Cisco Cisco AnyConnect Secure Mobility Client v4.x User Guide
Delete a Connection Entry
This procedure deletes a manually configured VPN connection entry. The only way to remove a connection entry imported from a
VPN secure gateway is to remove the downloaded AnyConnect profile that contains the connection entries.
VPN secure gateway is to remove the downloaded AnyConnect profile that contains the connection entries.
Procedure
Step 1
From the AnyConnect home screen, tap the detail disclosure button to the right of the VPN connection entry.
Step 2
Tap Delete VPN Connection.
Configure Certificates
About Certificates
Certificates are used to digitally identify each end of the VPN connection: The secure gateway, or the server, and the AnyConnect
client, or the user. A server certificate identifies the secure gateway to AnyConnect, and a user certificate identifies the AnyConnect
user to the secure gateway. Certificates are obtained from and verified by Certificate Authorities (CAs).
client, or the user. A server certificate identifies the secure gateway to AnyConnect, and a user certificate identifies the AnyConnect
user to the secure gateway. Certificates are obtained from and verified by Certificate Authorities (CAs).
When establishing a connection, AnyConnect always expects a server certificate from the secure gateway. The secure gateway only
expects a certificate from AnyConnect if it has been configured to do so. Expecting the AnyConnect user to manually enter credentials
is another way to authenticate a VPN connection. In fact, the secure gateway can be configured to authenticate AnyConnect users
with a digital certificate, with manually entered credentials, or with both. Certificate only authentication allows VPNs to connect
without user intervention.
expects a certificate from AnyConnect if it has been configured to do so. Expecting the AnyConnect user to manually enter credentials
is another way to authenticate a VPN connection. In fact, the secure gateway can be configured to authenticate AnyConnect users
with a digital certificate, with manually entered credentials, or with both. Certificate only authentication allows VPNs to connect
without user intervention.
Distribution and use of certificates to the secure gateway and to your device is directed by your administrator. Follow directions
provided by your administrator to import, use, and manage server and user certificates for AnyConnect VPNs. Information and
procedures in this document related to certificates and certificate management are provided for your understanding and reference.
provided by your administrator to import, use, and manage server and user certificates for AnyConnect VPNs. Information and
procedures in this document related to certificates and certificate management are provided for your understanding and reference.
AnyConnect stores both user and server certificates for authentication in its own certificate store. The AnyConnect certificate store
is managed from the Diagnostics > Certificates screen.
is managed from the Diagnostics > Certificates screen.
User Certificate Management
In order to authenticate to the secure gateway using a digital certificate, a user certificate must be imported and configured for VPN
use.
use.
User certificates are imported using one of the following methods, as directed by your administrator:
•
Import Certificates Attached to Emails, on page 12
•
Import Certificates From Hyperlinks, on page 12
•
Import Certificates Manually, on page 13
•
Once imported, the certificate can be associated with a particular connection entry or selected automatically during connection
establishment to authenticate. See
establishment to authenticate. See
Configure Certificate Use, on page 8
.
11