Cisco AnyConnect Secure Mobility Client Supported Features for Android Devices

Available Languages

Download Options

  • PDF     (14.7 KB)
    View with Adobe Reader on a variety of devices
  • ePub     (77.4 KB)
    View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
  • Mobi (Kindle)     (75.6 KB)
    View on Kindle device or Kindle app on multiple devices
Updated:June 27, 2019
Document ID:SMB5455

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Cisco AnyConnect Secure Mobility Client Supported Features for Android Devices

Objective

The Cisco AnyConnect Secure Mobility Client, also known as the Cisco AnyConnect VPN Client, is a software application for connecting to a Virtual Private Network (VPN) that works on various operating systems and hardware configurations. This software application makes it possible for remote resources of another network become accessible as if the user is directly connected to the network, but in a secure way. Cisco AnyConnect Secure Mobility Client provides an innovative new way to protect mobile users on computer-based or smart-phone platforms, providing a more seamless, always-protected experience for end users and comprehensive policy enforcement for an IT administrator.

The objective of this document is to show the features matrix of the Cisco AnyConnect Secure Mobility Client for Android devices.

Software Version

  • 4.4

Android AnyConnect Feature Matrix

Deployment and Configuration

Feature

Support

Install or upgrade from Application Store

Yes

Cisco VPN Profile support (manual import)

Yes

Cisco VPN Profile support (import on connect)

Yes

Mobile Device Management (MDM) configured connection entries

Yes

User-configured connection entries

Yes

Tunneling

Feature

Support

Transport Layer Security (TLS)

Yes

Datagram TLS (DTLS)

Yes

Internet Protocol Security Internet Key Exchange version 2 Network Address Translator Traversal (IPsec IKEv2 NAT-T)

Yes

IKEv2 - raw Encapsulating Security Payload (ESP)

No

Suite B (IPsec only)

Yes

TLS compression

Yes

Dead peer detection

Yes

Tunnel keepalive

Yes

Multiple active network interfaces

No

Per App Tunneling (requires Plus or Apex license and ASA 9.4.2 or later)

Yes, Android 5.0+ or Samsung Knox

Full tunnel (OS may make exceptions on some traffic, such as traffic to the app store)

Yes

Split tunnel (split include)

Yes

Local Area Network (LAN) (split exclude)

No

Split- Domain Name System (DNS)

Yes, will work with split include.

Auto Reconnect / Network Roaming

Yes, regardless of the Auto Reconnect profile specification, AnyConnect Mobile always attempts to maintain the VPN as users move between 3G and Wi-Fi networks.

VPN on-demand (triggered by destination)

No

VPN on-demand (triggered by application)

No

Rekey

Yes

IPv4 public transport

Yes

IPv6 public transport

Yes, requires Android 5.0 or later

IPv4 over IPv4 tunnel

Yes

IPv6 over IPv4 tunnel

Yes

Default domain

Yes

DNS server configuration

Yes

Private-side proxy support

No, Wi-Fi proxies are disabled when the VPN is established.

Proxy Exceptions

No

Public-side proxy support

No

Pre-login banner

Yes

Post-login banner

Yes

Differentiated Services Code Point (DSCP) Preservation

Yes

Connecting and Disconnecting

Feature

Support

VPN load balancing

Yes

Backup server list

Yes

Optimal Gateway Selection

No

Authentication

Feature

Support

Client Certificate Authentication

Yes

Online Certificate Status Protocol (OCSP)

Yes

Manual user certificate management

Yes

Manual server certificate management

Yes

Simple Certificate Enrollment Protocol

(SCEP) legacy enrollment Please confirm for your platform.

Yes

SCEP proxy enrollment Please confirm for your platform.

Yes

Automatic certificate selection

Yes

Manual certificate selection

Yes

Smart card support

No

Username and password

Yes

Tokens or challenge

Yes

Double authentication

Yes

Group Uniform Resource Locator (URL) (specified in server address)

Yes

Group selection (drop-down selection)

Yes

Credential prefill from user certificate

Yes

Save password

No

User Interface

Feature

Support

Standalone Graphical User Interface (GUI)

Yes

Native Operating System OS GUI

No

Application Program Interface (API) / Uniform Resource Identifier (URI) Handler (See URI Handling)

Yes

UI customization

No

UI localization

Yes, app contains pre-packaged languages.

User preferences

Yes

Home screen widgets for one-click VPN access

Yes

AnyConnect specific status icon

Optional

Mobile Posture

Feature

Support

Serial number or unique ID check

Yes

OS and AnyConnect version shared with headend

Yes

URI Handling

Feature

Support

Add connection entry

Yes

Connect to a VPN

Yes

Credential pre-fill on connect

Yes

Disconnect VPN

Yes

Import certificate

Yes

Import localization data

Yes

Import Extensible Markup Language

(XML) client profile

Yes

External (user) control of URI commands

Yes

Reporting and Troubleshooting

Feature

Support

Statistics

Yes

Logging / Diagnostic Information (DART)

Yes

Certifications

Feature

Support

FIPS 140-2 Level 1

Yes

 

For additional information on AnyConnect licensing on the RV340 series routers, check out the article AnyConnect Licensing for the RV340 Series Routers.

Was this Document Helpful?

FeedbackFeedback

Contact Cisco