74-110
Cisco ASA 5500 Series Configuration Guide using the CLI
Chapter74 Configuring Clientless SSL VPN
Configuring Remote Systems to Use Clientless SSL VPN Features
Clientless SSL VPN ensures the security of data transmission between the remote PC or workstation and
the ASA on the corporate network. Advise users that using clientless SSL VPN does not ensure that
communication with every site is secure. If a user then accesses a non-HTTPS web resource (located on
the Internet or on the internal network), the communication from the corporate ASA to the destination
web server is not private because it is not encrypted.
"Observing Clientless SSL VPN Security Precautions" on page 5 addresses an additional tip to
communicate with users, depending on the steps you follow within that section.
Configuring Remote Systems to Use Clientless SSL VPN Features
This section describes how to set up remote systems to use clientless SSL VPN and includes the
following topics:
Starting Clientless SSL VPN, page74-110
Using the Clientless SSL VPN Floating Toolbar, page74-111
Browsing the Web, page74-111
Browsing the Network (File Management), page74-112
Using Port Forwarding, page 74-112
Using E-mail Via Port Forwarding, page 74-113
Using E-mail Via Web Access, page74-114
Using E-mail Via E-mail Proxy, page74-114
Using Smart Tunnel, page74-114
You may configure user accounts differently and different clientless SSL VPN features can be available
to each user.

Starting Clientless SSL VPN

You can connect to the internet using any supported connection including:
home DSL, cable, or dial-ups
public kiosks
hotel hook-ups
airport wireless nodes
internet cafes
Note See the Cisco ASA 5500 Series VPN Compatibility Reference for the list of web browsers supported by
clientless SSL VPN.
Prerequisites
Cookies must be enabled on the browser in order to access applications via port forwarding.