This repository has been archived by the owner on Jun 4, 2021. It is now read-only.
Add instructions for OpenConnect app on Android. #1440
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
The OpenConnect app has a few advantages over the Cisco AnyConnect: - Doesn't require agreeing to a EULA. - GPL'ed. - Can install a CA certificate rather than clicking through a certificate mismatch prompt. - Forward secrecy. - It doesn't appear to tickle the bug in StreisandEffect#847 (prompting for a username). For now, I kept the AnyConnect instructions, but I think if a number of people are successful with these instructions, it would make sense to provide instructions only for OpenConnect. Fixes StreisandEffect#1143.
Certificates installed at the system level are trusted for both HTTPS and VPN, so it's better not to install the CA certificate.
alimakki
suggested changes
Sep 9, 2018
There was a problem hiding this comment.
Thank you @jsha for the PR and taking the time to write out instructions for OpenConnect on Android.
The instructions you have written look good, however I think it would be clearer to separate OpenConnect and AnyConnect instructions under their own respective anchor elements for navigational purposes - this would keep consistency with the layout we are using when having multiple options for the same platform (see the macOS instructions for example):
* [Android](#android)
* [Android OpenConnect](#android-openconnect)
* [Android AnyConnect](#android-anyconnect)
| @@ -117,6 +117,33 @@ Client certificates are a mechanism by which clients can authenticate themselves | |||
| <a name="android"></a> | |||
| ### Android ### | |||
There was a problem hiding this comment.
<a name="android-openconnect"></a>
### Android OpenConnect ###
| 1. You will be prompted *Please select your group.* The correct default has already been chosen. Tap *OK*. | ||
| 1. You should be good to go! You can verify that your traffic is being routed properly by [looking up your IP address on DuckDuckGo]({{ streisand_my_ip_url }}). It should say *Your public IP address is {{ streisand_ipv4_address }}*. | ||
|
|
||
| Alternate instructions using Cisco AnyConnect, in case the above instructions fail: |
There was a problem hiding this comment.
<a href="android-anyconnect"></a>
### Android AnyConnect ###
Alternate instructions using ....
|
Thank you @jsha for the PR. I think it would still be good to keep both OpenConnect and AnyConnect so that the widest possible user group can meaningfully follow the instructions. |
cpu
added
status/revisions-needed
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
The OpenConnect app has a few advantages over the Cisco AnyConnect:
username).
For now, I kept the AnyConnect instructions, but I think if a number of
people are successful with these instructions, it would make sense to
provide instructions only for OpenConnect.
Fixes #1143.