This repository has been archived by the owner on Jun 4, 2021. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 2k
Add instructions for OpenConnect app on Android. #1440
Open
jsha
wants to merge
12
commits into
StreisandEffect:master
Choose a base branch
from
jsha:openconnect-instructions
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
Changes from all commits
Commits
Show all changes
12 commits
Select commit
Hold shift + click to select a range
ef04c4a
Add instructions for OpenConnect app on Android.
jsha bc80c7b
Android OpenConnect app: Don't use CA certificate.
jsha f186c7b
Merge branch 'master' into openconnect-instructions
nopdotcom 88a318c
Merge branch 'master' into openconnect-instructions
alimakki 5d61d1a
Merge branch 'master' into openconnect-instructions
alimakki 4cf59c4
Merge branch 'master' into openconnect-instructions
alimakki fe754a8
Merge branch 'master' into openconnect-instructions
alimakki 9d84d78
Merge branch 'master' into openconnect-instructions
nopdotcom a01fd39
Merge branch 'master' into openconnect-instructions
alimakki e78efa8
Merge branch 'master' into openconnect-instructions
alimakki 5ecb607
Merge branch 'master' into openconnect-instructions
nopdotcom e02dec6
Merge branch 'master' into openconnect-instructions
CorbanR File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
|
@@ -117,6 +117,33 @@ Client certificates are a mechanism by which clients can authenticate themselves | |
<a name="android"></a> | ||
### Android ### | ||
|
||
1. Download a [client certificate file](#clientcerts) from the list above. | ||
1. Download [OpenConnect](https://play.google.com/store/apps/details?id=app.openconnect) from Google Play. | ||
1. Launch the application. | ||
1. Tap the *+* icon to add a new VPN. | ||
1. Enter `{{ streisand_ipv4_address }}:{{ ocserv_port }}`. | ||
1. Tap *CA certificate*. | ||
1. Find the server certificate file you downloaded (ca.crt) and tap it. Most likely it is in the Download folder if you downloaded it using the browser on your phone. | ||
1. Tap the *Select* button at the bottom of the screen. | ||
1. Tap *User certificate*. | ||
1. Find the client certificate file you downloaded and tap it. | ||
1. Tap the *Select* button at the bottom of the screen. | ||
1. Tap *Private key*. | ||
1. Tap the same client certificate file you selected for *User certificate*. | ||
1. Tap the *Select* button at the bottom of the screen. | ||
1. Tap the Back button. | ||
1. You should see an entry under the *PROFILES* section. | ||
1. Tap that entry. | ||
1. First time only: | ||
1. Accept the Connection Request dialog that Android displays. | ||
1. You will be prompted *Enter PKCS#12 pass phrase:*. Enter the password for the client certificate that you downloaded. Note: You may receive an error during this phase. If so, try again a couple of times. | ||
1. You will be prompted *Certificate warning*. Tap *Always connect.* | ||
1. Each time you connect: | ||
1. You will be prompted *Please select your group.* The correct default has already been chosen. Tap *OK*. | ||
1. You should be good to go! You can verify that your traffic is being routed properly by [looking up your IP address on DuckDuckGo]({{ streisand_my_ip_url }}). It should say *Your public IP address is {{ streisand_ipv4_address }}*. | ||
|
||
Alternate instructions using Cisco AnyConnect, in case the above instructions fail: | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
|
||
|
||
1. Download [Cisco AnyConnect](https://play.google.com/store/apps/details?id=com.cisco.anyconnect.vpn.android.avf) from Google Play. | ||
1. Launch the application. | ||
1. Tap *OK* to accept the "Supplemental End User License Agreement for AnyConnect® Secure Mobility Client vx.x and other VPN-related Software". | ||
|
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.