cancel
Showing results for 
Search instead for 
Did you mean: 

Configuration Steps for a Per App iOS VPN using AirWatch

Configuration of per app VPN profile

Login to AirWatch MDM portal

Login to the admin portal of AirWatch MDM to push the vpn profile to your iPhone profile.

URL - https://techp-ds.awmdm.com/
User name - xyzpqr
Password - ******

You will be logged in to the admin portal of AirWatch.

Adding a p12 and server certificate in the device through MDM. 

Go to Devices → Profiles → Add → Add Profile → Apple iOS 

Give a name to 'General' and fill up respective fields.

Select 'Deployment' type

  • Managed: To automatically download those profiles in the device.
  • Manual: To manually download this profile in the device. To download manually , user will get a notification in the 'Hub' app and clicking on this notification will redirect to messages screen of the app. From that screen user can select any of the messages and download the profiles which are available.   

Now select a profile, 'Credentials' to add p12 and Server certificate to your device.
You can add multiple certificates in a single profile. Click on the (+) button to add or (-) to delete.

Add a VPN profile to the device.

Go to Devices → Profiles → Add → Add Profile → Apple iOS 
Give a name to 'General' and fill up respective fields.

Select a profile of 'VPN' and click on 'Configure'. These are the configurations need to setup for VPN profile-

Connection Info

Fields
Values
Connection Name* VPN Configuration

Connection Type*

IKEv2

Always On

False

(Make it false, otherwise device will be in supervised mode)

Server*

10.140.220.222

(Host Machine IP or Host Name)

Local Identifier*

Client_Key1

(This string is CN(Common Name) and SAN-(Subject Alternate Name) of client certificate)

Remote Identifier*

10.140.220.222

(This string is CN(Common Name) and SAN-(Subject Alternate Name) of server certificate)

Machine Authentication

Certificate

(select 'certificate' here) 

Credential

Certificate #1

(if there is no certificate, please follow #3.1 Step)

Server Certificate Issuer Common Name 

VPN Server Root CA

(This string is CN-Common Name of server root certificate)

Server Certificate Common Name

10.140.220.222

(This string is CN-Common Name of server root certificate)

Enable EAP

True

EAP Authentication

Certificate

(select 'certificate' here)

TLS Minimum VersioniOS 11

OS Default

TLS Maximum VersioniOS 11

OS Default

Credential

Certificate #1

(Select the same 'Certificate' which added in 'Credentials')

Dead Peer Detection Interval

Every 10 minutes

SA Parameters 

IKE2 Child

 AES-256

 SHA2-256

 2

 1440



Add your credentials

Select 'Credentials' from the same profile. (you may have to scroll down the menu on the right)
Click on 'Configure' to add new credentials.
Add your p12 file here.

Save and Publish

Click on 'Save and Publish' to save the profile.

Now click on 'Publish' to publish the profile.

Respective devices will get updated with the published profile.

 To see this VPN Profile in your iOS device, go to Settings → VPN → PER-APP VPN  here your PER-APP and the VPN Profile will be visible.

Push an application to use the per-app VPN profile

VPN Profile of Per-App VPN is created. Now we will push an Application which will use this VPN Configuration.

Go to APPS & BOOKS → Applications → Native → Select 'Public' tab → Add Application

Select following options-
Platform Apple iOS

Source SEARCH APP STORE

Name (app will be searched in app store and would be installed in the iOS device) Flipkart

Click on 'Next' to search in App Store


Click on the 'Select' button for the application you want to continue with.

 

Click on 'SAVE & ASSIGN'

Add Asignments

Select Assignments tab and click on 'ADD ASSIGNMENT'

Select respective settings to Add Assignments

Select Application Delivery Method

AUTO - App will be automatically installed in the device, no need to install the app from App store explicitly. 
 
 VPN_APPLE
 
 
Click on 'Add' to add the profile.

Save and Publish the Profile

Click on 'SAVE & PUBLISH' to publish the profile. And then click on 'PUBLISH' to publish the profile.

After publish, list will look like this.

Now one notification will be fired in the iOS Device. Click on the ' Install' button in that notification to automatically install the Application.
Else you can go to App Store and install the application in your iOS Device.

Labels (1)
Contributors
Version history
Revision #:
2 of 2
Last update:
‎07-12-2019 02:14 PM
Updated by:
 

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community