Updates for cisco's client.

doc/profile.xml

@@ -18,14 +18,14 @@
 		</CertificateMatch>
 
 		<BackupServerList>
-	            <HostAddress>10.100.2.17</HostAddress>
+	            <HostAddress>localhost</HostAddress>
 		</BackupServerList>
 	</ClientInitialization>
 
 	<ServerList>
 		<HostEntry>
 	            <HostName>VPN Server</HostName>
-	            <HostAddress>10.100.2.17</HostAddress>
+	            <HostAddress>localhost</HostAddress>
 		</HostEntry>
 	</ServerList>
 </AnyConnectProfile>

doc/sample.config

@@ -8,17 +8,6 @@ auth = "plain[./sample.passwd]"
 # A banner to be displayed on clients
 #banner = "Welcome"
 
-# Client config xml. The variable $GROUP will be replaced by
-# the user's group name. This file must be accessible from inside
-# the worker's chroot. It is not used by the openconnect client.
-#user-profile = /profile.xml
-
-# Unless set to false it is required for clients to present their
-# certificate even if they are authenticating via a previously granted
-# cookie. Legacy CISCO clients do not do that, and thus this option
-# should be set for them.
-#always-require-cert = false
-
 # Use listen-host to limit to specific IPs or to the IPs of a provided hostname.
 #listen-host = [IP|HOSTNAME]
 
@@ -154,8 +143,8 @@ route = 192.168.1.0/255.255.255.0
 
 # Client profile xml. A sample file exists in doc/profile.xml.
 # This file must be accessible from inside the worker's chroot. 
-# It is not used by the openconnect client.
-#user-profile = /path/to/file.xml
+# The profile is ignored by the openconnect client.
+#user-profile = profile.xml
 
 # Unless set to false it is required for clients to present their
 # certificate even if they are authenticating via a previously granted