Free Edition
What is MDM?
Enterprise Mobility Management
Mobile Device Management
Mobile Application Management
Mobile Security Management
Mobile Email Management
Mobile Content Management
BYOD
Compliance
- CJIS
- HIPAA
- ISO
- PCI
- GDPR
Awards & Reviews
Supported Platforms
- iOS
- Android
- Windows
- macOS
- Chrome OS
- Android Enterprise
- Samsung Knox
Related Products

How to remotely configure FortiClient IPSec VPN Plug-in for Samsung devices?

Description

A Virtual Private Network (VPN) ensures only authorized users can access confidential corporate data, from any public network by transmitting all device-web communication on a secure channel. VPN also boosts productivity as it ensures employees can work from anywhere, without worrying about lack of access to specific resource/data. With remote work being adopted extensively, it has become mandatory for IT admins to configure VPN on mobile devices. Since managed app configuration is not available for some of the VPN vendors, MDM provides a workaround to configure them remotely using the native VPN clients.

Steps

Follow the steps given below, to configure VPN plug-ins:

On the MDM console, click on Device Mgmt tab and select Profiles.
Create Android profile and click Continue.
Select VPN and fill the requisite parameters as explained below:

Policy Description

PARAMETER	DESCRIPTION
Connection type	Select IPSec Xauth PSK as the connection type.
Connection name	Provide a name for the VPN connection to be configured
Server name/IP address	Enter the Fully Qualified Domain Name or IP address of your VPN server
User Name	Enter the dynamic variable %username% to get the user name, mapped to the device
Password	Specify the password to be used for user authentication
Shared Secret	Specify the pre-shared secret
IPSec Identifier	Specify the name of the group of the VPN server, to which the user is assigned.
Always on VPN	Enable this option to maintain a persistent connection between the managed devices and your organizational network, without the need to manually initiate VPN connection everytime. Applicable only for Device Owner devices.
VPN Lockdown	When the configured VPN is disconnected/unavailable, enabling this restricts access to other networks, including mobile data. VPN Lockdown can be configured only when Always On VPN is enabled.
DNS Server(s)	Specify the Fully Qualified Domain Name or IP Address of your internal DNS server to be used, once the VPN connection is established. You can specify several DNS servers, separating them with comma.
Forwarding Route(s)	Specify the forwarding route if you want to send the traffic through the VPN interface to the destination addresses. If the route is not specified, all network traffic will pass through the VPN connection.