33-15
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 33 Configuring Policy Objects for Remote Access VPNs
ASA Group Policies Dialog Box
Key Renegotiation Method The method by which the tunnel key is refreshed for the remote user
group client:
• Disabled—Disables the tunnel key refresh.
• Use Existing Tunnel—Renegotiates the SSL tunnel connection.
• Create New Tunnel—Initiates a new tunnel connection.
Enter the time interval (in minutes) between the tunnel refresh cycles
in the Interval field.
Enable Datagram Transport
Layer Security
Whether to enable Datagram Transport Layer Security (DTLS)
connections for the group.
Enabling DTLS allows the AnyConnect client establishing an SSL
VPN connection to use two simultaneous tunnels, an SSL tunnel and a
DTLS tunnel. Using DTLS avoids latency and bandwidth problems
associated with some SSL connections and improves the performance
of real-time applications that are sensitive to packet delays.
Enable Datagram Transport
Layer Security Compression
Whether to compress Datagram Transport Layer Security (DTLS)
connections for the group.
Table 33-9 ASA Group Policies SSL VPN Full Client Settings (Continued)
Element Description
