Cisco Security Expert

Jamey Heary

Previous Article Next Article

Cisco Releases AnyConnect SSLVPN client for iPad

Securely connect iPads to the corporate network

By jheary on Wed, 11/24/10 - 10:01pm.

. What's this?

The Cisco AnyConnect Secure Mobility SSLVPN iPad client will soon release to the Apple App store. Before the iPad specific version releases though you can use the iPhone version of AnyConnect on any 4.2+ version iPad. The AnyConnect client allows your iPad users to VPN back to a Cisco ASA headend device located at your office or corporation. The client supports both an auto launch on-demand mode and a manual switch it on when needed mode. The on-demand mode will bring up and connect the client in the background whenever the iPad needs to send info to a protected network.

Here are some screenshots from the iPad AnyConnect

The following AnyConnect 2.4 features are supported:
• Tunnel Protocols
– Cisco SSL Tunnelling Protocol (CSTP)
– Cisco DTLS Tunnelling Protocol (CDTP)
• SSL Cipher Suites
– AES256-SHA
– AES128-SHA
• DTLS Cipher Suites
– AES256-SHA
– AES128-SHA
• Client Certificate Authentication
• Routing Policy
– Tunnel All
– Split Include
– Split Exclude
• Rekey
• Network Roaming
• TLS Compression
• Cisco Profile Support
• Profile Update
• IPv6 over IPv4
• Post-Login Banner
• Dead Peer Detection
• Tunnel Keep-Alive
• Backup Server List
• Default Domain
• Cluster Support
• DNS Server Configuration
• Private-side Proxy Support
• Network Change Monitoring
• Statistics
• Graphical User Interface
• Pre-login Banner
• AnyConnect Secure Certificate Enrollment Protocol (SCEP)
• Certificate Import
In addition, the Cisco AnyConnect Secure Mobility Client is compatible with the Apple iOS Connect on Demand feature and certificates enrolled directly on to the iPhone including those enrolled with AnyConnect SCEP.

Check out the Apple App store in the near future for the iPad version of the client.

The opinions and information presented here are my PERSONAL views and not those of my employer. I am in no way an official spokesperson for my employer.

More from Jamey Heary:
* Credit Card Skimming: How thieves can steal your card info without you knowing it
* Google Nexus One vs. Top 10 Phone Security Requirements
* Why you should always shred your boarding pass
* Video rental records are afforded more privacy protections than your online data
* The truth about new SSL attacks
* 2009 Top Urban Legends in IT Security/a>

Go to Jamey’s Blog for more articles on security.

Tags

What is Tech Briefcase?

TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more

Bookmark content

Speed up your research efforts with content across the web.

Search and Store

Find the white papers you need. Create folders for any topic.

View Anywhere

Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.

Don't have an account yet?

About Cisco Security Expert

Jamey Heary, CCIE #7680, sits on the PCI Security Standards Council- Board of Advisors where he provides strategic and technical guidance for future PCI standards. Jamey is the author of Cisco NAC Appliance: Enforcing Host Security with Clean Access. (Check out all of Jamey Heary's books from Cisco Press.) He also has a patent pending on a new DDoS mitigation technique.

Jamey sits on several security advisory boards for Cisco Systems and is a founding member of the Colorado Healthcare InfoSec Users Group. He is an experienced speaker who is recognized as an expert in network security architecture, regulatory compliance, and routing and switching. His other certifications include CISSP, CCSP, and he is a Certified HIPAA Security Professional. He has been working in the IT field for 15 years and in IT security for 10 years. Jamey is currently a Distinguished Systems Engineer at Cisco Systems.