A Virtual Private Network (VPN) ensures only authorized users can access confidential corporate data, from any public network by transmitting all device-web communication on a secure channel. VPN also boosts productivity as it ensures employees can work from anywhere, without worrying about lack of access to specific resource/data. With remote work being adopted extensively, it has become mandatory for IT admins to configure VPN on mobile devices. Since managed app configuration is not available for some of the VPN vendors, MDM provides a workaround to configure them remotely using the native VPN clients.
Follow the steps given below, to configure VPN plug-ins:
PARAMETER | DESCRIPTION |
Connection type |
Select IPSec Xauth PSK as the connection type. |
Connection name |
Provide a name for the VPN connection to be configured |
Server name/IP address | Enter the Fully Qualified Domain Name or IP address of your VPN server |
User Name | Enter the dynamic variable %username% to get the user name, mapped to the device |
Password | Specify the password to be used for user authentication |
Shared Secret | Specify the pre-shared secret |
IPSec Identifier | Specify the name of the group of the VPN server, to which the user is assigned. |
Always on VPN | Enable this option to maintain a persistent connection between the managed devices and your organizational network, without the need to manually initiate VPN connection everytime. Applicable only for Device Owner devices. |
VPN Lockdown | When the configured VPN is disconnected/unavailable, enabling this restricts access to other networks, including mobile data. VPN Lockdown can be configured only when Always On VPN is enabled. |
DNS Server(s) | Specify the Fully Qualified Domain Name or IP Address of your internal DNS server to be used, once the VPN connection is established. You can specify several DNS servers, separating them with comma. |
Forwarding Route(s) | Specify the forwarding route if you want to send the traffic through the VPN interface to the destination addresses. If the route is not specified, all network traffic will pass through the VPN connection. |