Home
Using the Console
This section provides information about using the SOTI MobiControl console to perform the various management tasks.
SOTI MobiControl Console Reference
Global Settings
SOTI VPN | Configuring Service Settings

Welcome to SOTI MobiControl 2025.1 Help
SOTI MobiControl is an enterprise mobile management solution dedicated to helping you manage your enterprise devices. Use SOTI MobiControl Help to learn about all the features available through SOTI MobiControl.
Setting Up SOTI MobiControl
This section provides instructions for installing, activating, and upgrading SOTI MobiControl instances.
What's New in SOTI MobiControl
Using the Console
This section provides information about using the SOTI MobiControl console to perform the various management tasks.
- About the SOTI MobiControl Console
- Managing Users
- Managing Devices
- Managing Configurations
- Managing Applications
- Managing Data
- Monitoring Devices
- Troubleshooting Device Issues
- Generating Reports
- Managing System Settings
- Other Features
- SOTI MobiControl Console Reference
  - Enrollment Policies
  - Profiles
  - App Policies
  - Compliance Policies
  - Agents
  - Servers
  - Global Settings
    - Android Management
    - Device Agent and Plugin
    - Enterprise Bindings
    - Enterprise Migration Certificate
    - Re-Enrollment Rule
    - Samsung Knox E-FOTA
      Use the Samsung Knox E-FOTA configuration to manage the firmware updates for your Knox enabled Samsung devices.
    - Samsung ELM
    - Zebra LifeGuard OTA
    - App Store License Management
    - Apple Push Notification Service
    - Apple Root Certificate
    - Automated Device Enrollment
    - PRK Encryption Certificate
    - Administrative Console
    - Enrollment Page
    - Login Page
    - Self Service
    - Chrome Enterprise Binding
    - Access Control Policy
    - Authentication Options
    - Directory Service Sync Frequency
    - Endpoint Authentication
    - Locate Timeout
    - SOTI Search Settings
    - System Health
    - Custom Attributes
    - Enrollment Rules
    - Restriction Rules
    - Terms and Conditions
    - Unenrollment Actions
    - Log Levels
    - Log Maintenance
    - Cloud Link Agent
    - Deployment Server Settings
      When there are more than one SOTI MobiControl Deployment Servers in your environment, you can customize the distribution the incoming and outgoing device interactions amongst the Deployment Servers. This feature provides automatic rebalancing when a Deployment Server disconnects and then later reconnects.
    - SOTI VPN | Configuring Service Settings
    - API Clients
    - Certificate Authority Page
    - Directory
    - Global Proxy
    - Identity Provider
    - SMTP Server Connections
    - Syslog
    - Using Webhooks
    - SOTI ONE Configurations
    - Device Health Attestation
    - Re-Enrollment Rule (Windows)
    - Windows Notification Service
    - Enterprise Apps Configuration
  - Users and Permissions
  - Reports
  - Advanced Configurations
  - ERG Installer
  - Common Dialog Boxes
System Health
View vital system stats in a variety of interactive, up-to-date charts and tables.
SOTI MobiControl Administration
This section provides information about how to perform various administrative tasks related to SOTI MobiControl. These tasks include monitoring your SOTI MobiControl system, changing deployment settings, integrating SOTI MobiControl with third-party applications, and performing various modifications that extend SOTI MobiControl beyond its standard configuration.
Using Package Studio
This section provides information about how to use SOTI MobiControl Package Studio to create data packages for devices.
Using Script Commands
Send scripts and execute commands on your devices with SOTI MobiControl. Script commands are supported on the following platforms:
Using SOTI MobiControl Stage
This section provides information about how to use SOTI MobiControl Stage to quickly and easily enroll devices.
Cloud Link Agent
Glossary
Notices

SOTI VPN | Configuring Service Settings

About this task

Configure an IP address pool and an authentication-key validity period for your SOTI Virtual Private Network (VPN) service.

Important: You must have Manage SOTI VPN permissions to configure SOTI VPN service settings.

Procedure

From the SOTI MobiControl hamburger menu, select Global Settings > MobiControl Services > SOTI VPN.
In the VPN IP Pool section, define a distinct IP address pool for your VPN by selecting to add a Starting IP and an Ending IP. Defining a range displays a Pool Size that lists the amount of IP addresses in the specified range.
When a device gets a SOTI VPN profile payload, it receives an IP address from this pool. SOTI VPN servers also receive IP addresses from the same address pool.
Tip: In scenarios such as a key renewal or revoking and re-applying SOTI VPN payloads, you must generate a new IP-key pair before removing the older one. Have extra IP addresses available to ease this process.

Important: Before deleting an IP pool, make sure that an alternative IP pool is available for devices to receive IP addresses.
Set a Key Validity Period value. This determines how long authentication and encryption keys exchanged between the VPN server and its client devices remain valid before renewing.

Important: Modifying the key validity period value is not recommended unless required for troubleshooting.

Note: A SOTI VPN server receives the key upon enrollment and is valid for the specified duration. When a device's SOTI VPN key passes the validity period, a check-in action is required to keep the SOTI VPN active.

What to do next

Enroll your SOTI VPN server. See Enrolling SOTI VPN Servers.