Enterprise Deployment Manual

Table Of Contents

Appendix A Cisco VPN Server Configuration 67

A Cisco VPN Server Configuration

Use these guidelines to configure your Cisco VPN server for

use with iPhone, iPod touch and iPad.

Supported Cisco Platforms

iPhone OS supports Cisco ASA 5500 Security Appliances and PIX Firewalls configured

with 7.2.x software or later. The latest 8.0.x software release (or later) is recommended.

iPhone OS also supports Cisco IOS VPN routers with IOS version 12.4(15)T or later. VPN

3000 Series Concentrators don’t support iPhone VPN capabilities.

Authentication Methods

iPhone OS supports the following authentication methods:

Â Pre-shared key IPSec authentication with user authentication via xauth

Â Client and server certificates for IPSec authentication with optional user

authentication via xauth

Â Hybrid authentication where the server provides a certificate and the client provides

a pre-shared key for IPSec authentication; user authentication is required via xauth.

Â User authentication is provided via xauth and includes the following authentication

methods:

Â User name with password

Â RSA SecurID

Â CryptoCard