Cisco
300-730 · Question #129
300-730 Question #129: Real Exam Question with Answer & Explanation
The correct answer is B: Validate that the correct license is in use on the ASA for WebVPN.. The error 'clientless (browser) SSLVPN access is not allowed' on Cisco ASA is a licensing enforcement message indicating the device does not have a valid WebVPN license installed.
Question
A user is trying to log in to a Cisco ASA using the clientless SSLVPN feature and receives the error message "clientless (browser) SSLVPN access is not allowed". Which step should the Cisco ASA administrator take to resolve this issue?
Options
- AEnable the clientless VPN protocol on the group policy.
- BValidate that the correct license is in use on the ASA for WebVPN.
- CIncrease the number of simultaneous logins allowed on the group policy.
- DVerify that a user account exists in the local AAA database for the user.
Explanation
The error 'clientless (browser) SSLVPN access is not allowed' on Cisco ASA is a licensing enforcement message indicating the device does not have a valid WebVPN license installed.
Common mistakes.
- A. Disabling the clientless VPN tunnel protocol in a group policy produces a connection-method-not-permitted message during session setup, not the licensing denial that appears before policy evaluation.
- C. Exceeding the simultaneous logins limit generates a 'maximum sessions exceeded' or similar quota message, which is distinct from the access-not-allowed licensing error.
- D. An absent local AAA user account results in an authentication failure after the VPN portal loads, not a protocol-level access denial before the session is even established.
Concept tested. Cisco ASA WebVPN clientless SSL VPN licensing requirement
Community Discussion
No community discussion yet for this question.