Cisco Cisco AnyConnect Secure Mobility Client v4.x Release Notes
New Features in AnyConnect 4.0.05053 for Android Mobile Devices
This version of Android is a maintenance release for devices running earlier versions. See
in AnyConnect 4.0.05053 for Android, on page 20
for all resolved issues.
Cisco recommends that you upgrade to this latest release of AnyConnect and review the
Limitations for AnyConnect on Android, on page 16
and
Known Compatibility Issues, on page 16
to be
aware of current operational considerations.
New Features in AnyConnect 4.0.05042 for Android Mobile Devices
This vesion of Android is a maintenance release for devices running earlier versions. See
AnyConnect 4.0.05042 for Android, on page 20
for all resolved issues.
Cisco recommends that you upgrade to this latest release of AnyConnect and review the
Limitations for AnyConnect on Android, on page 16
and
Known Compatibility Issues, on page 16
to be
aware of current operational considerations.
New Features in AnyConnect 4.0.05041 for Android Mobile Devices
This release of AnyConnect for Android contains the following updates:
• Updates for the May 2016 OpenSSL Vulnerabilities.
• The Android AnyConnect client now supports OCSP (Online Certificate Status Protocol).
This allows the client to query the status of individual certificates in real time by making a request to
the OCSP responder and parsing the OCSP response to get the certificate status. OCSP is used to verify
the entire certificate chain. There is a five second timeout interval per certificate to access the OCSP
responder.
the OCSP responder and parsing the OCSP response to get the certificate status. OCSP is used to verify
the entire certificate chain. There is a five second timeout interval per certificate to access the OCSP
responder.
The Android user can enable or disable OCSP verification in the Anyconnect settings activity. We have
added new API's in our framework which can be used by MDM administrators to control this feature
remotely. Currently we are supporting Samsung and Google MDM.
added new API's in our framework which can be used by MDM administrators to control this feature
remotely. Currently we are supporting Samsung and Google MDM.
• Android now supports Strict Certificate Trust Mode.
If selected, when authenticating remote security gateways, AnyConnect disallows any certificate that it
cannot verify. Instead of prompting the user to accept these certificates, the client fails to connect. This
overrides the Block Untrusted Server setting and prompts. If not selected, the client prompts the user to
accept the certificate. This is the default behavior.
cannot verify. Instead of prompting the user to accept these certificates, the client fails to connect. This
overrides the Block Untrusted Server setting and prompts. If not selected, the client prompts the user to
accept the certificate. This is the default behavior.
We strongly recommend that you enable Strict Certificate Trust for the AnyConnect client. The Android
user can enable or disable this mode in the Anyconnect settings activity. Also, there are API's in our
framework which can be used by MDM administrators to control this feature remotely.
user can enable or disable this mode in the Anyconnect settings activity. Also, there are API's in our
framework which can be used by MDM administrators to control this feature remotely.
This vesion of Android is also a maintenance release for devices running earlier versions. See
in AnyConnect 4.0.05041 for Android, on page 21
for all resolved issues.
Cisco recommends that you upgrade to this latest release of AnyConnect and review the
Limitations for AnyConnect on Android, on page 16
and
Known Compatibility Issues, on page 16
to be
aware of current operational considerations.
Release Notes for Cisco AnyConnect Secure Mobility Client, Release 4.0.x for Android
3
AnyConnect for Android Release Notes
New Features in AnyConnect 4.0.05053 for Android Mobile Devices