Cisco Cisco AnyConnect Secure Mobility Client v3.x Release Notes
8
Release Notes for Cisco AnyConnect Secure Mobility Client 3.0.x for Android Mobile Devices
New Features in AnyConnect 3.0.09073
Where:
–
protocol: Specifies the VPN protocol used for this connection. The valid values are SSL or
IPsec. This parameter is optional and defaults to SSL if unspecified.
IPsec. This parameter is optional and defaults to SSL if unspecified.
–
authentication: Specifies the authentication method used for an IPsec VPN connection. The
valid values are EAP-AnyConnect, EAP-GTC, EAP-MD5, EAP-MSCHAPv2, or IKE-RSA.
This parameter is optional; it applies when
valid values are EAP-AnyConnect, EAP-GTC, EAP-MD5, EAP-MSCHAPv2, or IKE-RSA.
This parameter is optional; it applies when
protocol
specifies
IPsec
only and defaults to
EAP-AnyConnect if unspecified.
–
ike-identity: The IKE identify when AUTHENTICATION is set to EAP-GTC, EAP-MD5, or
EAP-MSCHAPv2. This parameter is invalid when used for other authentication settings.
EAP-MSCHAPv2. This parameter is invalid when used for other authentication settings.
For URI details, see
section in
Chapter 13, “Administering AnyConnect for Mobile Devices” of the Cisco AnyConnect Secure
Mobility Client Administrator Guide, Release 3.0 manual.
Mobility Client Administrator Guide, Release 3.0 manual.
•
Extensions have been made to the anyconnect:connect command to open a specified URL or close
the AnyConnect UI based on the results of the connect action. For example:
the AnyConnect UI based on the results of the connect action. For example:
anyconnect://connect?host
=vpn.company.com&onerror=http%3A%2F%2Fwww.cisco.com%2Ffailure
.html&onsuccess=http%3A%2F%2Fwww.cisco.com
anyconnect://connect?host
=vpn.company.com&onsuccess=anyconnect%3A%2F%2Fclose
–
onerror—Specify the URL to be opened when this connection transitions into the disconnected
state, or use the
state, or use the
anyconnect%3A%2F%2Fclose
command to close the AnyConnect GUI.
–
onsuccess—Specify the URL to be opened when this connection transitions into the connected
state, or use the
state, or use the
anyconnect%3A%2F%2Fclose
command to close the AnyConnect GUI.
For URI details, see
section in Chapter 13,
“Administering AnyConnect for Mobile Devices” of the Cisco AnyConnect Secure Mobility Client
Administrator Guide, Release 3.0 manual.
Administrator Guide, Release 3.0 manual.
User Certificate Management Enhancements
AnyConnect 3.0 provides additional options for importing user certificates into the AnyConnect
certificate store depending on the Android release on the device. In addition to importing a user
certificate directly from the device’s file system, AnyConnect users can now do the following:
certificate store depending on the Android release on the device. In addition to importing a user
certificate directly from the device’s file system, AnyConnect users can now do the following:
•
Import certificates from a Network Location by specifying the URI of the certificate. This applies
to all Android releases.
to all Android releases.
•
Import certificates from the device’s Credential Storage to the AnyConnect store. This applies to
Android 4.0/ICS and later.
Android 4.0/ICS and later.
For details, see
in the Android User Guide for Cisco AnyConnect
Secure Mobility Client, Release 3.0.x.
Server Certificate Management Enhancements
AnyConnect now imports user-authorized server certificates to the AnyConnect certificate store during
the connection process.
the connection process.
A user is given the opportunity to import a server certificate if it is not automatically accepted by
AnyConnect. Only valid, trusted server certificates are automatically accepted by AnyConnect. See
AnyConnect. Only valid, trusted server certificates are automatically accepted by AnyConnect. See
below for the procedure to do this.