Cisco Cisco ASA 5585-X with No Payload Encryption
© 2012 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
Page 5 of 16
VPN Initiation on Windows, Mac OS X, and Android
*
1. As soon as the end user connects to noncorporate Wi-Fi or 3G cellular networks, the Trusted Network
Detection feature of the AnyConnect VPN client initiates an SSL VPN connection.
2. The AnyConnect client establishes an SSL VPN connection with the ASA VPN gateway, using certificate-
based authentication.
Note: The Trusted Network Detection feature is currently not available with the Android ICS (generic) version of
AnyConnect. Hence, the end user has to manually initiate the VPN connection as needed. For support for other
AnyConnect. Hence, the end user has to manually initiate the VPN connection as needed. For support for other
Android devices, please see the release notes.
7
Connection Flow After Establishing VPN on All Devices
3. The Jabber client will connect to Cisco Unified Communications appliances to provide unified communications
services over the VPN connection.
4. The Jabber client is then ready to place or receive voice or video calls, etc.
Recommended Licensing and Software Versions
Table 1 lists the supported platforms, required licenses, and minimum software version recommended.
Table 1.
Supported Platforms
Device/Component
Licenses Required
Recommended Version
ASA
8
VPN Gateway
AnyConnect Essentials and AnyConnect
Mobile
Mobile
9
ASA 8.4 or above
Adaptive Security Device Manager (ASDM)
ASDM 6.4 or above
AnyConnect for Mac OS and Windows
AnyConnect 3.0 or above
AnyConnect for iOS and Android
AnyConnect 2.5
Jabber
See Ordering Guide
See the links to datasheets on previous page.
Note: AnyConnect also offers a premium license that will be required to enforce posture assessment of the
device before allowing the VPN connection. For the Jabber specific deployment covered in this guide, AnyConnect
device before allowing the VPN connection. For the Jabber specific deployment covered in this guide, AnyConnect
Essentials and AnyConnect Mobile licenses are sufficient.
Configuration Best Practices
This section discusses best practices to help ensure a seamless user experience when using Cisco Jabber outside
the corporate network with Cisco AnyConnect. The user experience can be divided into four stages:
1. Install: Download and install the applications.
2. Provision: Provision the Jabber
10,11,12
and AnyConnect clients.
3. Connect: Establish a VPN connection for everyday use, including certificate enrollment.
7
AnyConnect 2.5 on Android - release notes:
8
9
10
Jabber for iPad Administration Guide:
11
Jabber for Android Administration Guide:
12
Jabber for iPhone Administration Guide: