Cisco Bug: CSCvv43349 - ASDM: Ask to apply changes without config changes for VPN connection profile
Sep 02, 2020
- Cisco ASA 5500-X Series Firewalls
Known Affected Releases
9.13(1) 9.13(1.12) 9.14(1) 9.14(1.19)
Symptom: It is confirmed starting the ASA code 9.13.1, when you go to ASDM, Configure, Site-to-Site, Connection Profiles, then open a connection profile and cancel it without any configuration change made, then the 'Apply' button is highlighted as if we made a configuration change. After checking the pre-deployment lines we confirmed the ASDM is trying to apply the next crypto map pfs changes in the connection profile: 'crypto map outside_map 1 set pfs group5' Conditions: Site to site VPN tunnel configuration setup in the ASA and any of the next ASA codes running: 9.13.1, 18.104.22.168, 9.14.1 and 22.214.171.124. It does not matter the ASDM code use: ASDM 7.12.1 and ASA 9.12.2 - not happening. ASDM 7.13.1 and ASA 9.12.2 - not happening. ASDM 126.96.36.199 and ASA 9.12.2 - not happening. ASDM 7.13.1 and ASA 9.13.1 - Issue happening. ASDM 188.8.131.52 and ASA 9.13.1 - Issue happening. ASDM 184.108.40.206 and ASA 220.127.116.11 - Issue happening. ASDM 18.104.22.168 and ASA 9.14.1 - Issue happening. ASDM 22.214.171.124 and ASA 126.96.36.199 - Issue happening. This problem is confirmed not happening when running ASA code 9.12.2.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases