Cisco ASA 5505 Configuration Manual page 67

Asa 5500 series

Hide thumbs Also See for ASA 5505:

Getting started manual (168 pages)

Administrator's manual (118 pages)

Hardware installation manual (82 pages)

Table of Contents

Introduction to the Cisco ASA 5500 Series Adaptive Security Appliance

New Features for ASDM Version 6.3(2)/ASA Version 8.3(2) (Unless Otherwise Noted) (continued)

Hardware processing for

large modulus operations

(2048-bit RSA certificate

Microsoft Internet Explorer

proxy lockdown control

Secondary password

This feature lets you switch large modulus operations from software to hardware. It applies

only to the ASA models 5510, 5520, 5540, and 5550.

The switch to hardware accelerates the following:

2048-bit RSA public key certificate processing.

Diffie Hellman Group 5 key generation.

We recommend that you enable this feature if it is necessary to improve the connections per

second. Depending on the load, it might have a limited performance impact on SSL

throughput. We recommend that you use this feature during a low-use or maintenance period

to minimize a temporary packet loss that can occur during the transition of processing from

software to hardware.

The following commands were introduced or modified: crypto engine large-mod-accel, clear

configure crypto engine, show running-config crypto engine, and show running-config

In ASDM, use the Command Line Interface tool to enter the crypto engine large-mod-accel

Also available in Version 8.2(3).

Enabling this feature hides the Connections tab in Microsoft Internet Explorer for the duration

of an AnyConnect VPN session. Disabling the feature leaves the display of the Connections

tab unchanged; the default setting for the tab can be shown or hidden, depending on the user

registry settings.

The following command was introduced: msie-proxy lockdown.

In ASDM, use the Command Line Interface tool to enter this command.

Also available in Version 8.2(3).

You can now configure SSL VPN support for a common secondary password for all

authentications or use the primary password as the secondary password.

The following screen was modified: Configuration > Remote Access VPN > Clientless SSL

Access > Connection Profiles > Add/Edit Clientless SSL VPN Connection Profile > Advanced

> Secondary Authentication.

Cisco ASA 5500 Series Configuration Guide using ASDM

New Features

Show Quick Links

Chapters

Table of Contents

Asa 5510 Asa 5540 Asa 5520 Asa 5550 Asa 5580

Cisco ASA 5505 Configuration Manual page 67

Hide quick links:

Chapters

Related Manuals for Cisco ASA 5505

Related Products for Cisco ASA 5505

This manual is also suitable for:

Table of Contents