Per App VPN: Custom SSL

SOTI MobiControl's Apple Per App VPN feature enables you to specify apps which must communicate over a per-app VPN connection. You can specify whether the per-app VPN will automatically start when the app initiates network communications.

General

VPN Name The name of the VPN connection
Identifier for the custom SSL Enter the custom SSL VPN (reverse DNS format)
VPN Server / IP Address The server or IP address of the VPN connection
Username The username for authenticating the connection
Domain The domain of the VPN connection

Proxy

Proxy Configures the proxy used with this configuration. You can select None, Automatic or manual
URL If automatic is selected, then enter the address of the proxy here
Proxy Server If manual is selected, then enter the host name or IP address of proxy server
Username Username for authenticating the connection
Password Password for authenticating the connection

Authentication

Authentication Select the type of authentication used for this VPN connection. You can select Password or Certificate
Password used for Authentication If Password is selected as the authentication type, enter the password used for authentication
Identity Certificate If Certificate is selected as the authentication type, select the certificate used for identity here
Note: For simplicity, you should deploy the certificate to your devices within the same profile as the per-app vpn configuration.
Prompt for Password If selected, the user will be prompted for their password
Enable VPN on Demand When enabled, VPN on demand will establish a VPN connection for specified domains and host names.

Custom Data

Integrated Parameter Name Integrated parameter provided by the vendor.

VPN On Demand Actions

To add multiple VPN On Demand Actions, enter the settings for your first action and a new empty row appears.

Integrated Parameter Name Create a name for the integrated parameter.
Action Set an action for the integrated parameter name:

Always Establish: a VPN connection is always established for this domain or hostname.

Never Establish: a VPN connection is never established for this domain or hostname.

Establish if needed: a VPN connection is established for this domain or hostname if a VPN connection is required.

Managed Applications

Click Search application to enter an app name and search the App Store for the applications you want this VPN to apply to. If you have several apps that you would like to use the VPN, you can upload a .csv file by clicking Import file. Each row in the .csv file must contain the following information: <App ID>, <App Name>