本文转自:https://www.cisco.com/c/en/us/td/docs/security/asa/asa98/configuration/vpn/asa-98-vpn-config/webvpn-mobile-devices.html

Chapter: Clientless SSL VPN with Mobile Devices

Chapter Contents

Use Clientless SSL VPN with Mobile Devices

You can access Clientless SSL VPN from your Pocket PC or other certified mobile device. Neither the ASA administrator nor the Clientless SSL VPN user need do anything special to use Clientless SSL VPN with a certified mobile device.

Cisco has certified the following mobile device platforms:

  • HP iPaq H4150
  • Pocket PC 2003
  • Windows CE 4.20.0, build 14053
  • Pocket Internet Explorer (PIE)
  • ROM version 1.10.03ENG
  • ROM Date: 7/16/2004

Some differences in the mobile device version of Clientless SSL VPN exist:

  • A banner Web page replaces the popup Clientless SSL VPN window.
  • An icon bar replaces the standard Clientless SSL VPN floating toolbar. This bar displays the Go, Home and Logout buttons.
  • The Show Toolbar icon is not included on the main Clientless SSL VPN portal page.
  • Upon Clientless SSL VPN logout, a warning message provides instructions for closing the PIE browser properly. If you do not follow these instructions and you close the browser window in the common way, PIE does not disconnect from Clientless SSL VPN or any secure website that uses HTTPS.

Restrictions of Clientless SSL VPN with Mobile

  • Clientless SSL VPN supports OWA 2000 and OWA 2003 Basic Authentication. If Basic Authentication is not configured on an OWA server and a Clientless SSL VPN user attempts to access that server, access is denied.
  • Unsupported Clientless SSL VPN features:
    • Application Access and other Java-dependent features.
    • HTTP proxy.
    • The Citrix Metaframe feature (if the PDA does not have the corresponding Citrix ICA client software).