Allowing HTTPS Access for ASDM
The security appliance allows a maximum of 5 concurrent ASDM instances per context, if available,
with a maximum of 32 ASDM instances between all contexts.
This section includes the following topics:
•
•
Enabling HTTPS Access
To configure ASDM access, follow these steps:
To identify the IP addresses from which the security appliance accepts HTTPS connections, enter the
Step 1
following command for each address or subnet:
hostname(config)# http source_IP_address mask source_interface
To enable the HTTPS server, enter the following command:
Step 2
hostname(config)# http server enable [ port ]
By default, the port is 443. If you change the port number, be sure to include the new port in the ASDM
access URL. For example, if you change it to port 444, enter:
https://10.1.1.1:444
To specify the location of the ASDM image, enter the following command:
Step 3
hostname(config)# asdm image disk0:/asdmfile
For example, to enable the HTTPS server and let a host on the inside interface with an address of
192.168.1.2 access ASDM, enter the following commands:
hostname(config)# crypto key generate rsa modulus 1024
hostname(config)# write mem
hostname(config)# http server enable
hostname(config)# http 192.168.1.2 255.255.255.255 inside
To allow all users on the 192.168.3.0 network to access ASDM on the inside interface, enter the
following command:
hostname(config)# http 192.168.3.0 255.255.255.0 inside
Accessing ASDM from Your PC
From a supported web browser on the security appliance network, enter the following URL:
https:// interface_ip_address [: port ]
In transparent firewall mode, enter the management IP address.
Cisco Security Appliance Command Line Configuration Guide
40-4
Enabling HTTPS Access, page 40-4
Accessing ASDM from Your PC, page 40-4
Chapter 40
Managing System Access
OL-12172-03