Cisco Cisco AnyConnect Secure Mobility Client v3.x Release Notes
1
Release Notes for Cisco AnyConnect Secure Mobility Client 3.0.x, for Apple iOS
Known Issues and Limitations
Known Issues and Limitations
Guidelines and Limitations
•
Cisco IOS routers do not support the Cisco AnyConnect Secure Mobility client for Apple iOS at this time.
•
This release of AnyConnect for Apple iOS supports only the features that are strictly related to remote access.
•
AnyConnect supports the following types of VPN configurations:
–
Manually generated.
–
AnyConnect VPN client profile imported.
–
iPhone Configuration Utility generated. For details about the iPhone Configuration Utility see
•
The VPN configurations generated by the iPhone Configuration Utility do not support Network Roaming. If your users
require Network Roaming, use an AnyConnect profile.
require Network Roaming, use an AnyConnect profile.
•
The Apple iOS device supports no more than one AnyConnect VPN client profile. The contents of the generated
configuration always matches the most recent profile. For example, if a user goes to vpn.example1.com and then goes to
vpn.example2.com, the AnyConnect VPN client profile imported from vpn.example2.com replaces the one imported from
vpn.example1.com.
configuration always matches the most recent profile. For example, if a user goes to vpn.example1.com and then goes to
vpn.example2.com, the AnyConnect VPN client profile imported from vpn.example2.com replaces the one imported from
vpn.example1.com.
•
This release supports the tunnel keepalive feature; however, it can reduce the battery life of the device. Increasing the
update interval value can mitigate that issue.
update interval value can mitigate that issue.
Apple iOS Connect On Demand Considerations
•
Apple iOS 7 does not support Connect on Demand (COD) Always Connect domains. Domains in this category will be
treated as Connect if Needed domains.
treated as Connect if Needed domains.
•
AnyConnect collects device information when the UI is launched and a VPN connection is initiated. Therefore, there are
circumstances in which AnyConnect can mis-report mobile posture information if the user relies on iOS’s Connect On
Demand feature to make a connection initially, or after device information, such has the OS version, has changed.
circumstances in which AnyConnect can mis-report mobile posture information if the user relies on iOS’s Connect On
Demand feature to make a connection initially, or after device information, such has the OS version, has changed.
•
To ensure proper establishment of Connect On Demand VPN tunnels after updating AnyConnect, users must manually start
the AnyConnect app and establish a connection. If this is not done, upon the next iOS system attempt to establish a VPN
tunnel, the error message “The VPN Connection requires an application to start up” will display.
the AnyConnect app and establish a connection. If this is not done, upon the next iOS system attempt to establish a VPN
tunnel, the error message “The VPN Connection requires an application to start up” will display.
Also see
in the Cisco AnyConnect Secure Mobility Client Administrator Guide, for
additional information about using Connect On Demand.
Known Issues in Apple iOS Impacting VPN
We have reported the following iOS issues to Apple. They may be resolved in a future iOS release.
•
A DTLS packet received while the device is asleep does not awaken it. TLS packets, however, awaken the device if
notifications or Facetime is enabled. AnyConnect automatically disconnects the DTLS tunnel when the device goes to
sleep to allow packets received over the TLS connection to wake the device. The DTLS tunnel is restored when the device
resumes.
notifications or Facetime is enabled. AnyConnect automatically disconnects the DTLS tunnel when the device goes to
sleep to allow packets received over the TLS connection to wake the device. The DTLS tunnel is restored when the device
resumes.
•
Voice applications running in the background on an iPod Touch cannot receive packets over VPN. This functionality works
as expected on iPhone devices.
as expected on iPhone devices.