- Cisco VPN client на Android легко и просто
- Cisco vpn для андроид
- Android User Guide for Cisco AnyConnect Secure Mobility Client, Release 4.0.x
- Available Languages
- Download Options
- AnyConnect User Guide
- AnyConnect Overview
- Open Software License Notices
- Android Supported Devices
- Install the Android AnyConnect Application
- Start AnyConnect
- SUMMARY STEPS
- DETAILED STEPS
- What to do next
- Android Device Permissions
- Configure a VPN Connection
- Configure Connection Entries
- Procedure
- Adding Connection Entries Manually
- Modifying a Connection Entry
- Delete a Connection Entry
- About Certificates on Your Android Device
- About User Certificates
- About Server Certificates
- Importing Certificates from Hyperlinks
- Before you begin
- SUMMARY STEPS
- DETAILED STEPS
- Importing Certificates Manually
- Before you begin
- SUMMARY STEPS
- DETAILED STEPS
- Importing Certificates Provided by a Secure Gateway
- Before you begin
- SUMMARY STEPS
- DETAILED STEPS
- Viewing Certificates
- SUMMARY STEPS
- DETAILED STEPS
- Removing Certificates
- Deleting a Single Certificate
- SUMMARY STEPS
- DETAILED STEPS
- Clearing All Certificates
- SUMMARY STEPS
- DETAILED STEPS
- Establish a VPN Connection
- Before you begin
- SUMMARY STEPS
- DETAILED STEPS
- Respond to Untrusted VPN Server Notifications
- Respond to Another App
- Respond to MMS Notifications
- SUMMARY STEPS
- DETAILED STEPS
- Specifying Application Settings
- Launch AnyConnect at Startup
- SUMMARY STEPS
- DETAILED STEPS
- Hide the AnyConnect Status Bar Icon
- SUMMARY STEPS
- DETAILED STEPS
- Control the External Use of AnyConnect
- SUMMARY STEPS
- DETAILED STEPS
- Block Untrusted Servers
- SUMMARY STEPS
- DETAILED STEPS
- Set FIPS Mode
- Before you begin
- SUMMARY STEPS
- DETAILED STEPS
- Set OCSP Revocation
- Before you begin
- SUMMARY STEPS
- DETAILED STEPS
- Strict Certificate Trust
- Before you begin
- SUMMARY STEPS
- DETAILED STEPS
- Using AnyConnect Widgets
- SUMMARY STEPS
- DETAILED STEPS
- Managing the AnyConnect Client Profile
- About AnyConnect Client Profiles
- Viewing the AnyConnect Profile
- SUMMARY STEPS
- DETAILED STEPS
- Importing an AnyConnect Profile
- Before you begin
- SUMMARY STEPS
- DETAILED STEPS
- Removing the AnyConnect Profile
- SUMMARY STEPS
- DETAILED STEPS
- Managing Localization
- Viewing Installed Localization Data
- Procedure
- Importing Localization Data
- SUMMARY STEPS
- DETAILED STEPS
- Restoring Localization Data
- SUMMARY STEPS
- DETAILED STEPS
- Exiting AnyConnect
- SUMMARY STEPS
- DETAILED STEPS
- Removing AnyConnect
- SUMMARY STEPS
- DETAILED STEPS
- Display the AnyConnect Version and Licenses
- SUMMARY STEPS
- DETAILED STEPS
- What to do next
- Determine Connection Status
- View AnyConnect Statistics
- SUMMARY STEPS
- DETAILED STEPS
- Viewing Log Messages
- SUMMARY STEPS
- DETAILED STEPS
- Sending Log Messages
- SUMMARY STEPS
- DETAILED STEPS
- Clearing Debug Log Messages
- SUMMARY STEPS
- DETAILED STEPS
- Common Android Problems
- I received a tun.ko error message
- I cannot edit/delete some connection entries
- Connection timeouts and unresolved hosts
- Certificate-based authentication does not work
- Error connecting, device working OK
- Cannot connect to ASA, unresolvable host error
- AnyConnect package fails to install from the Market
- “Installation Error: Unknown reason -8”
- AnyConnect error, “Could not obtain the necessary permissions to run this application. This device does not support AnyConnect.”
- Cannot email logs because of a network connectivity issue
- AnyConnect frequently connects by itself
- Authentication using a one time password is not working
- Guidelines and Limitations for AnyConnect on Android
- Known Compatibility Issues
Cisco VPN client на Android легко и просто
После покупки Samsung Galaxy Ace у меня возник вопрос: как получать доступ через интернет на смартфоне в корпоративную сеть? С моим предыдущим телефоном iPhone все было просто — работало из коробки.
«Эта функция не нужна», — скажете вы, ведь есть стандартный PPTP/L2TP/Ipsec Vpn. Да конечно, но в больших корпорациях для этого вовсю используют Cisco ASA. Поэтому я был огорчен отсутствием этой функции. Все мои попытки найти готовый софт на эту темы — не увенчались успехом. Когда я попал на сайт запросов новых функций для Андроид и увидел больше 1500 запросов на Cisco VPN Client, то решил действовать сам, благо опыт работы с Unix-Linux имеется.
Внимание: Для работы ножен root пользователь. Для этого установите приложение SuperOneClick или update через Recovery.
Если вы не являетесь счастливым обладателем прошивки с CyanogenMod нам понадобится найти модуль ядра для VPN для конкретной прошивки установленной на Вашем телефоне. Мне помог поиск tun.ko Galaxy ACE 2.6.32.9-perf .
На всякий случай проверим есть ли он у вас:
Есть /system/lib/modules/tun.ko?
Если нет – найденный в инете модуль tun.ko скопируем по нужному адресу.
С терминала на девайcе открываем доступ на запись:
Получилось! Теперь осталось дело за малым — установить VPN клиент.
Я пользую порт VPNC. Можно скачать с Маркета либо на сайте
VPNC
Теперь его настроим.
А что если Ваш админ не дает Вам данные/пароль?
На ПК находим файл *.pcf, открываем его в блокноте.
Нас интересуют строки Host,GroupName,enc_GroupPwd.
В поле Gateway пишем IP адрес либо DNS имя нашего VPN-сервера (Host из конфига)
Username,Password вводим личные.
В поле ID — GroupName из конфига. А вот в поле Secret — enc_GroupPwd.
Только для начала расшифровываем ее на сайте -бесплатно и без регистрации.
Ну вот и все — можем запускать клиент.
Да, чуть не забыл — при первом запуске нужен доступ на запись.
Потом, после перезагрузки телефона, перед стартом VPNC можно подгружать модуль либо вручную,
либо через запуск скриптов типа Gscript, либо добавить внутрь функции do_pre_init() в файле /data/data/org.codeandroid.vpnc_frontend/files/vpnc-script.
Кстати новая версия поддерживает токены — нужно только галочку кликнуть в настройках соединения.
Если у вас редкая прошивка или антикварный телефон с Android, на который тяжело найти модуль для ядра — то есть еще один путь — но это уже тема для следующей статьи.
Источник
Cisco vpn для андроид
Краткое описание:
Универсальный кроссплатформенный VPN клиент специально созданный для работы с Cisco ASA.
На платформе Android имеются несколько версий приложения. Их отличия видны из названий:
AnyConnectICS+ — универсальная версия.
Работает стабильно на большинстве устройств. Подойдет максимальному количеству пользователей. В силу своей универсальности, работает медленнее других версий, а так же задает больше вопросов.
Rooted AnyConnect — универсальная версия для рутованых устройств.
Samsung AnyConnect — версия для устройств производства Samsung.
HTC AnyConnect — версия для устройств производства HTC.
Samsung ( Скачать:
Версия: 4.10.03113 от 08/10/2021 (iMiKED)
Версия: 4.10.02094 от 25/08/2021 (iMiKED)
Версия: 4.10.02080 от 04/08/2021 (iMiKED)
Версия: 4.10.01095 от 03/07/2021 (iMiKED)
Версия: 4.10.00102 от 05/05/2021 (iMiKED)
AnyConnectICS+: AnyConnect ICS+.apk ( 9.4 МБ )
Rooted AnyConnect: Rooted AnyConnect.apk ( 5.9 МБ )
Samsung AnyConnect: Samsung AnyConnect.apk ( 5.9 МБ )
Сообщение отредактировал iMiKED — 08.10.21, 04:34
Источник
Android User Guide for Cisco AnyConnect Secure Mobility Client, Release 4.0.x
Available Languages
Download Options
AnyConnect User Guide
Install and Start AnyConnect
AnyConnect Overview
The Cisco AnyConnect Secure Mobility Client for Android provides seamless and secure remote access to enterprise networks. AnyConnect allows installed applications to communicate as though connected directly to the enterprise network. AnyConnect is a sophisticated networking application that also allows you to set preferences, control the operation of AnyConnect, and use diagnostic tools and facilities on your device as recommended by your administrator.
AnyConnect may be used in your enterprise in conjunction with Mobile Device Management software. If so, work with your administrator to abide by device management rules since these rules may include restricting VPN access to a set of approved applications . Your organization may provide additional documentation on using AnyConnect for Android .
Your Android app store provides the application for initial installation and all upgrades. The Cisco Adaptive Security Appliance (ASA) is the secure gateway that admits access to the VPN, but it does not support updates of AnyConnect for mobile devices.
Open Software License Notices
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/).
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com).
This product includes software written by Tim Hudson (tjh@cryptsoft.com).
Android Supported Devices
Full support for Cisco AnyConnect on Android is provided on devices running Android 4.0 (Ice Cream Sandwich) through the latest release of Android.
Cisco AnyConnect on Kindle is available from Amazon for the Kindle Fire HD devices, and the New Kindle Fire. AnyConnect for Kindle is equivalent in functionality to the AnyConnect for Android package.
Per App VPN is supported in managed and unmanaged environments. In a managed environment using Samsung KNOX MDM, Samsung devices running Android 4.3 or later with Samsung Knox 2.0, are required. When using Per App in an unmanaged environment, the generic Android methods are used.
For the Network Visibility Module (NVM) capabilities, Samsung devices that are running Samsung Knox 2.8 or later (including 3.2), which requires Android 7.0 or later, are required. For configuration of NVM, the AnyConnect Profile Editor from AnyConnect 4.4.3 or later is also required. Earlier releases do not support mobile NVM configurations.
Install the Android AnyConnect Application
AnyConnect for Android is available for download only from the Android Market for your Android device, or from Amazon for Kindle devices. You cannot download it from the Cisco website or after connecting to a secure gateway.
To install AnyConnect for Android, follow the normal procedures for downloading, installing or upgrading apps on your device.
Start AnyConnect
SUMMARY STEPS
- Tap the AnyConnect Icon to start the AnyConnect app.
- If this is the first time that you are starting AnyConnect after installing or upgrading you will see the following:
- An End User License Agreement (EULA), you must Accept this to continue.
- An Acceptable Use Policy (AUP) for data collection if this has been configured by your network administrator. Click OK to continue. Data collection is done by the Network Visibility Module (NVM) that is part of the AnyConnect client application.
- Tap Connection > Add New VPN Connection to configure a connection entry. See Adding Connection Entries Manually for details.
- (Optional) Tap Details to view summary and detailed statistics about the current active VPN connection. See Viewing AnyConnect Statistics.
- (Optional) Tap Menu and choose:
Settings , to specify AnyConnect application preferences. See Specifying Application Preferences.
Diagnostics , to carry out the following diagnostic activities:
Managing AnyConnect profiles; see Profile Management.
Managing AnyConnect localization; see Localization Management.
Viewing logging and system information; see Viewing Log Messages.
About , to view AnyConnect version and license information. See Displaying the AnyConnect Version and Licensing Details.
Exit , to exit AnyConnect. See Exiting AnyConnect.
DETAILED STEPS
Tap the AnyConnect Icon to start the AnyConnect app.
If this is the first time that you are starting AnyConnect after installing or upgrading you will see the following:
- An End User License Agreement (EULA), you must Accept this to continue.
- An Acceptable Use Policy (AUP) for data collection if this has been configured by your network administrator. Click OK to continue. Data collection is done by the Network Visibility Module (NVM) that is part of the AnyConnect client application.
Tap Connection > Add New VPN Connection to configure a connection entry. See Adding Connection Entries Manually for details.
(Optional) Tap Details to view summary and detailed statistics about the current active VPN connection. See Viewing AnyConnect Statistics.
(Optional) Tap Menu and choose:
Settings , to specify AnyConnect application preferences. See Specifying Application Preferences.
Diagnostics , to carry out the following diagnostic activities:
Managing AnyConnect profiles; see Profile Management.
Managing AnyConnect localization; see Localization Management.
Viewing logging and system information; see Viewing Log Messages.
About , to view AnyConnect version and license information. See Displaying the AnyConnect Version and Licensing Details.
Exit , to exit AnyConnect. See Exiting AnyConnect.
What to do next
Follow instructions provided to you by your administrator to configure and establish a VPN connection to your network.
Android Device Permissions
The following permissions are declared in the Android manifest file for AnyConnect operation:
Manifest Permission | Description |
---|---|
uses-permission: android.permission.ACCESS_NETWORK_STATE | |
uses-permission: android.permission.ACCESS_WIFI_STATE | |
uses-permission: android.permission.BROADCAST_STICKY | |
uses-permission: android.permission.INTERNET | |
uses-permission: android.permission.READ_EXTERNAL_STORAGE | |
uses-permission: android.permission.READ_LOGS | |
uses-permission: android.permission.READ_PHONE_STATE | |
uses-permission: android.permission.RECEIVE_BOOT_COMPLETED |
Adding Connection Entries Manually
Add a VPN connection entry to identify the VPN secure gateway to which you want to connect.
Procedure
From the AnyConnect home window, tap Connection > Add New VPN Connection to open the connection editor.
Cancel out of the connection editor at any time.
(Optional) Choose Description to enter a descriptive name for the connection entry.
Enter a unique name for this connection entry. If not specified, the Server Address is used as the default. Use any letters, spaces, numbers, or symbols on the keyboard display. This field is case-sensitive.
Choose Server Address to enter the address of the secure gateway.
Enter the domain name or IP address of the secure gateway, including a group if specified by your administrator.
(Optional) Tap Advanced Preferences to change advanced certificate and protocol settings.
Cancel out of the Advanced Connection Editor window at any time.
(Optional) Tap Certificate to specify how user certificates are used for this connection.
- Tap Disabled to specify that certificates will not be used for this connection.
- Tap Automatic to specify that a certificate will be used to establish a connection only if it is required by the secure gateway.
- Tap the certificate that your administrator instructs you to use.
Your administrator will provide you with instructions for installing a user certificate on your mobile device if one is necessary to establish a VPN session. Tap any certificate in the list to view its details.
(Optional) Tap Connect with IPsec to use IPsec instead of SSL for this VPN connection.
This connection attribute is provided to you by your administrator.
The Authentication parameter becomes active if you choose IPsec for your VPN connection protocol.
(Optional) Tap Authentication and choose the authentication method for this IPsec connection.
This connection attribute is provided to you by your administrator.
- EAP-AnyConnect (default authentication option)
- IKE-RSA
- EAP-GTC
- EAP-MD5
- EAP-MSCHAPv2
Your authentication option is shown in the Advanced Connection Editor window.
(Optional) If you have specified EAP-GTC, EAP-MD5, or EAP-MSCHAPv2 to be used for authentication, tap IKE Identity to enter the identity information given to you by your administrator.
Tap Done in both the Advanced window and the Connection Editor window to save the connection values.
AnyConnect adds the new connection entry.
Modifying a Connection Entry
Change a VPN connection entry to correct a configuration error or comply with an IT policy change.
Note |
Depending on the VPN secure gateway configuration, AnyConnect may add connection entries to the list in the AnyConnect home window. The top row of the AnyConnect home window highlights the checkmark, indicating that the VPN connection is established.
Note |
Note |
Note |
Note |