Cisco Cisco AnyConnect Secure Mobility Client v4.x User Guide
Procedure
Step 1
In the AnyConnect app, tap Settings.
Step 2
Tap External Control.
Step 3
Tap Enabled, Disabled, or Prompt.
Step 4
Tap Settings to return to the Settings screen.
Block Untrusted Servers
This application setting determines if AnyConnect blocks connections when it cannot identify the secure gateway. This protection is
ON by default; it can be turned OFF, but this is not recommended.
ON by default; it can be turned OFF, but this is not recommended.
AnyConnect uses the certificate received from the server to verify its identify. If there is a certificate error due to an expired or invalid
date, wrong key usage, or a name mismatch, the connection is blocked.
date, wrong key usage, or a name mismatch, the connection is blocked.
When this setting is ON, a blocking Untrusted VPN Server! notification alerts you to this security threat.
Procedure
Step 1
In the AnyConnect app, tap Settings.
Step 2
Tap the Block Untrusted Servers checkbox to enable or disable this preference.
Set FIPS Mode
FIPS Mode makes use of Federal Information Processing Standards (FIPS) cryptography algorithms for all VPN connections.
Before You Begin
Your administrator will inform you if you need to enable FIPS mode on your mobile device for connectivity to your network.
Procedure
Step 1
In the AnyConnect app, tap Settings.
Step 2
Tap FIPS Mode to enable or disable this preference.
Manage the VPN Profile
VPN profile management on your device should be carried out based on instructions provided by your administrator.
The AnyConnect VPN Client Profile is an XML file downloaded from the secure gateway that specifies client behavior and identifies
VPN connections. Each connection entry in the VPN Client Profile specifies a secure gateway that is accessible to this endpoint
VPN connections. Each connection entry in the VPN Client Profile specifies a secure gateway that is accessible to this endpoint
16