SOTI VPN | Configuration Details
Important: The SOTI Virtual
Private Network (VPN) profile configuration requires a Premium Plus or an Enterprise
Plus SOTI MobiControl license. To assign a VPN server in your profile
configuration, you must have Assign VPN Servers permission.
Configure the following settings when:
Network
VPN Servers | Select to add a VPN server.
When adding a VPN server, specify the external IP address of the server
for clients to connect to in the Address field.
Then, specify the port number and select a VPN server from your enrolled
VPN servers. Note: You may specify a different
port number for traffic forwarding if necessary; however, make sure
to use port 51820 for forwarding traffic to the SOTI VPN server. Remember: When selecting a VPN server,
you see a list of all enrolled VPN servers that you have the
permissions to assign. If you do not see your VPN server listed,
verify that the user has the Assign VPN Servers permissions. Also, make sure that the
server itself is enabled. See Configuring SOTI VPN Server Settings. |
Internal Domain Name Service (DNS) Server Address | [Optional] Specify the IP address of the internal DNS server used to
resolve addresses on your enterprise network. Note: If you leave this value blank, it uses your device’s default DNS
server to resolve Fully Qualified Domain Names
(FQDN). |
Applications
Important: Per-app VPN configuration
is only available for Android Work Managed, Corporate Owned Personal Enabled (COPE),
and Work Profile devices. Windows Modern devices do not support this
feature.
Per App VPN | Enable this toggle to grant VPN access to specific applications.
Select to search for an
application. Applications not part of this list are exempt from
using the VPN. Tip: You can select
to import a list of
applications in a .csv or a
.txt file. |
Split Tunnel
Split-tunnel VPN | Enable this toggle to configure a split tunnel where the device uses a VPN connection for specific resources. Specify the resources using the Classless Inter-domain Routing (CIDR) notation. Only connections to the address ranges specified in the Tunneled Resources field use the VPN. |
Tunneled Resources | Select to add IP addresses of your tunneled resources. |