this patch provides additional detail when authenticating to the head-end. Most notably, ASA headends will show this: AnyConnect-Parent: Tunnel ID : 23.1 Public IP : 172.16.33.14 Encryption : none Hashing : none TCP Src Port : 37483 TCP Dst Port : 443 Auth Mode : userPassword Idle Time Out: 30 Minutes Idle TO Left : 21 Minutes Client OS : linux-64 Client OS Ver: Linux 3.19.0-61-generic #69~14.04.1-Ubuntu SMP Thu Jun 9 09:09:13 UTC 2016 x86_6 <<<< this Client Type : AnyConnect Client Ver : Cisco AnyConnect VPN Agent for Linux 4.2.02075 Bytes Tx : 4464 Bytes Rx : 967 Pkts Tx : 3 Pkts Rx : 1 Pkts Tx Drop : 0 Pkts Rx Drop : 0 Other information (like platform, UUID or MAC addresses) can potentially be used in CSD to lockout e.g. Virtual Machines which makes it desirable to have some control over this information as well.
