Cisco Cisco ASA for Nexus 1000V Series Switch 전단
Cisco Secure Desktop (CSD) FAQ
Document ID: 107461
Contents
Introduction
What components comprise Cisco Secure Desktop?
Where can I find a compability matrix of OSes, Browsers, ASA versions, SSL VPN components supported by
CSD?
Where is the CSD configuration stored?
Does CSD interoperate with the IPsec VPN Client?
Are the CSD PreLogin certificates checks applicable to both machine and user certificates?
If the Secure vault is used, how does interaction occur between it and the real desktop? For example, can files
be moved between the two or is it only into the vault?
Is there a limit to the number of CSD locations that can be defined?
Can files that are created within the CSD vault be saved onto the guest PC?
Can files be saved onto an external media such as a USB fob, a CD, or disk?
Can files be saved on shared network folders?
When a file is created or amended within the Secure Desktop space, can it be saved to a Network
Neighborhood if a network connection through SSL VPN or IPsec exists ?
How are the locations matched to the client?
Even if ActiveX and Java are disabled, can I execute the CSD installation through the browser?
Are there restrictions of Sun JVM ?
Does the Cisco Security Agent (CSA) V4.5 inter−operate with CSD and SVC?
How big of a partition on the hard drive does CSD create?
How does CSD decide what applications to support? Is it just all the applications that are available on the
normal desktop? Can this be controlled ?
Can the use of
Where can I find a compability matrix of OSes, Browsers, ASA versions, SSL VPN components supported by
CSD?
Where is the CSD configuration stored?
Does CSD interoperate with the IPsec VPN Client?
Are the CSD PreLogin certificates checks applicable to both machine and user certificates?
If the Secure vault is used, how does interaction occur between it and the real desktop? For example, can files
be moved between the two or is it only into the vault?
Is there a limit to the number of CSD locations that can be defined?
Can files that are created within the CSD vault be saved onto the guest PC?
Can files be saved onto an external media such as a USB fob, a CD, or disk?
Can files be saved on shared network folders?
When a file is created or amended within the Secure Desktop space, can it be saved to a Network
Neighborhood if a network connection through SSL VPN or IPsec exists ?
How are the locations matched to the client?
Even if ActiveX and Java are disabled, can I execute the CSD installation through the browser?
Are there restrictions of Sun JVM ?
Does the Cisco Security Agent (CSA) V4.5 inter−operate with CSD and SVC?
How big of a partition on the hard drive does CSD create?
How does CSD decide what applications to support? Is it just all the applications that are available on the
normal desktop? Can this be controlled ?
Can the use of
print screen
be prevented in CSD?
Does the Secure Desktop run on DEP (MS KB 875352) enabled PCs and Tablet PCs ?
Is there any way to pre−install CSD on a PC?
What browsers support Cache Cleaner on Windows platforms and MAC OS?
What happens if a remote client is connected to secure desktop over WebVPN and they terminate the session
like unplugging the network cable from the computer. Will the secure desktop still remove traces of the file? I
believe a similar scenario would be if the machine is powered off in the middle of the session, is the file
accessible then?
Are the new versions of CSD 3.2.x , which shipped with ASA version 8.0.2.x, backwards−compatible with
ASA version 7.1.x/7.2.x?
Does CSD v3.2 support Secure Desktop/Vault and Cache Cleaner?
Can CSD 3.2.x Advanced Endpoint Assessment remediate multiple versions of AV, AS, FW?
Is CSD 3.2 able to control control CD−R media?
How susceptible is the CSD secure vault to threats from the host operating system while running CSD? Is it a
case of the vault in effect that keeps all bad things at bay, or is the use of the normal desktop on the host just
as vulnerable? The posture check is relied upon in order to mitigate against some of these issues.
How do I position CCA NAC appliance versus CSD + Adv Endpoint Assessment in ASA 8.0? It seems like
the posture check functionality is similar. Does CCA offer any significant advantages over 8.0 for VPN users?
Can CSD be enabled on a per−group−policy, post authentication?
How is CSD uninstalled from the client PC?
How do I find a list of what products are supported by Cisco Secure Desktop (CSD) Host Scan?
How do I find the subset of products that are supported with Advanced Endpoint Assessment?
What CSD operations require Administrative privileges?
Is there any way to pre−install CSD on a PC?
What browsers support Cache Cleaner on Windows platforms and MAC OS?
What happens if a remote client is connected to secure desktop over WebVPN and they terminate the session
like unplugging the network cable from the computer. Will the secure desktop still remove traces of the file? I
believe a similar scenario would be if the machine is powered off in the middle of the session, is the file
accessible then?
Are the new versions of CSD 3.2.x , which shipped with ASA version 8.0.2.x, backwards−compatible with
ASA version 7.1.x/7.2.x?
Does CSD v3.2 support Secure Desktop/Vault and Cache Cleaner?
Can CSD 3.2.x Advanced Endpoint Assessment remediate multiple versions of AV, AS, FW?
Is CSD 3.2 able to control control CD−R media?
How susceptible is the CSD secure vault to threats from the host operating system while running CSD? Is it a
case of the vault in effect that keeps all bad things at bay, or is the use of the normal desktop on the host just
as vulnerable? The posture check is relied upon in order to mitigate against some of these issues.
How do I position CCA NAC appliance versus CSD + Adv Endpoint Assessment in ASA 8.0? It seems like
the posture check functionality is similar. Does CCA offer any significant advantages over 8.0 for VPN users?
Can CSD be enabled on a per−group−policy, post authentication?
How is CSD uninstalled from the client PC?
How do I find a list of what products are supported by Cisco Secure Desktop (CSD) Host Scan?
How do I find the subset of products that are supported with Advanced Endpoint Assessment?
What CSD operations require Administrative privileges?