72-64
Cisco ASA 5500 Series Configuration Guide using ASDM
Chapter72 Configuring Clientless SSL VPN
Application Access User Notes
Note Microsoft anti-spyware software blocks changes that the port forwarding Java applet makes to the hosts
file. See www.microsoft.com for information on how to allow hosts file changes when using
anti-spyware software.
Stopping Application Access Improperly
When Application Access terminates abnormally, the hosts file remains in a clientless SSL
VPN-customized state. Clientless SSL VPN checks the state the next time you start Application Access
by searching for a hosts.webvpn file. If it finds one, a Backup HOSTS File Found error message
(Figure 72-13) appears, and Application Access is temporarily disabled.
Once you shut down Application Access improperly, you leave your remote access client/server
applications in limbo. If you try to start these applications without using clientless SSL VPN, they might
malfunction. You might find that hosts that you normally connect to are unavailable. This situation could
commonly occur if you run applications remotely from home, fail to quit the Application Access window
before shutting down the computer, then try to run the applications later from the office.
Reconfiguring a Host’s File Automatically Using Clientless SSL VPN
If you are able to connect to your remote access server, follow these steps to reconfigure the host’s file
and re-enable both Application Access and the applications.
Detailed Steps
Step1 Start clientless SSL VPN and log in. The home page opens.
Step2 Click the Applications Access link. A Backup HOSTS File Found message appears. (See Figure72-13.)
Figure72-13 Backup HOSTS File Found Message
Step3 Choose one of the following options:
Restore from backup—Clientless SSL VPN forces a proper shutdown. It copies the hosts.webvpn
backup file to the hosts file, restoring it to its original state, then deletes hosts.webvpn. You then
have to restart Application Access.