No Matches Found!
Try with a different search term
No Matches Found!
Try with a different search term
There's a new home for Articles. Find Articles on Our Product Support Page.
Hello, we are using a third-party VPN app on our devices and I would like to enroll it with zero touch, meaning that with the installation of app the VPN profile should be installed on Android automatically, too. I tried to tweak the instructions described here: https://www.soti.net/mc/help/v2025.1/en/scriptcmds/reference/configuring_native_VPN_AE.html?hl=native%2Cvpn But I am not able to find the right configuration. Most important is to set the "always-on VPN" option of the VPN profile. When I open the app, the VPN profile is installed automatically, but the always-on VPN option is disabled. Other MDMs, like MobileIron or ManageEngine do have the option to set this flag for a specific app via profiles. For me it would be OK to use writeprivateprofstring, if no other option is available with MobiControl. As less important, but optimal solution would be to install the VPN profile completely without opening the VPN app. This would mean that the script needs to contain the app-id etc. Any ideas?
I am integrating the Cisco Secure Client on my Honeywell CK67 handheld scanner (Android edition). We created a profile for this device that will install Soti Mobile and also the Cisco Secure Client with the initial VPN settings needed for it to connect. All of this is working and the device can connect to our VPN and work as expected. However, the VPN-connected scanner in MobiControl is not showing as online and available (greyed out). In this state, I cannot monitor or remotely connect to it. I am sure a setting in the Secure VPN Client configuration will enable this, but I cannot find it. This is our last step in configuring these devices. Any help is appreciated.
Hi guys! I need some help with my VPN. I already deployed Cisco Anyconnect to my Android Tablet, but since now it was not possible for me to configure an automatic configuration for the VPN Profile with the right settings and a VPN certificate for the authentification. Also as if i try to make a profile in Mobicontrol, to test-deploy a certificate i cannot upload the certificate. I have a .pfx, didn't work. Tried the .key, didn't work either. Also for a .crt. Somehow it is telling me in some cases that the password for the file is not correct. But i know that it is correct - i also tried then to remove the password, but the same story. No password is also a false password. I am looking forward for your answers! Thanks in advance! :) Best regards, Gerrit
Hello We're planning to integrate a VPN application (Zscaler). When it is initialized, we have an Android popup (see below) that the user must authorize by pressing the "OK" button. I'm looking for a way to automate this action. We have a solution that uses a JS script (Mobicontrol) with the device.injectKey function to perform TAB, Enter and timers.This doesn't seem 100% reliable to me, I'm afraid of having a lot of failures. Does anyone have a better solution to avoid this popup or to authorize it automatically ? Activity name Popup : com.android.vpndialogs/.ConfirmDialog This GitHub post explains the same problem, but ADB resolution is not remotely automatable...https://stackoverflow.com/questions/67980851/grant-android-vpn-permission-via-command-line-using-adb Thank you for your help
I have some scripts I want to send out to a department of laptops to help configure a new VPN we'll be using. The first script enables Split Tunneling and the other adds and app trigger for mstsc.exe. Because of how busy the members of this department often are, I'd like to leverage MC to send these scripts to each laptop for me. However, even after adding a snippet to the beginning that should self-elevate the scripts if (-NOT ([Security.Principal.WindowsPrincipal][Security.Principal.WindowsIdentity]::GetCurrent()).IsInRole([Security.Principal.WindowsBuiltInRole] "Administrator")) { $arguments = "& '" +$myinvocation.mycommand.definition + "'" Start-Process powershell -Verb runAs -ArgumentList $arguments Break } however, the logs always result in the error that the new VPN connection name cannot be found. Digging into the error, it seems most likely that this is due to the script not actually running as elevated. Has anyone successfully sent and executed a self-elevating Powershell script through Mobicontrol?
Hi there, I can't get any further with the assin of my VPN profile. I generated a IPSec Xauth PSK profile with all details: VPN Name VPN Server Hostname/IP Address PSKey Another test with: IPSec Identifier Ustername Password Anytime... I get the issue: "Install Failed" Logs: "Profile "VPN TEST 2" version 6 failed to install, because all of its payloads cannot be installed." Device is: Zebra L10 Android 8.1 Agent 15.2.1.1058 I tested it with and withoud Lockdown and Authentication prifle. No chance... Any idea? Thank you for your help, Sebastian
Hi everyone, since there's no possibility to configure native VPN on Work Profile devices (COPE), we let the users configure their VPN settings on their own. We are pushing a device certificate via MobiControl. On fully managed (COBO) devices, the user is able to select this certificate in the VPN settings. Unfortunately, the user cannot do this on COPE devices, because the work profile has its own certificate store where the user doesn't have access to. Does anybody know how we can solve this problem?
Hello, ---------- MC Version : 15.2 Device Platform OS : Android 7.1 Device Management Type : AE / DO ---------- We would like to deploy and configure a Per-App VPN on our managed devices, ideally through the Cisco AnyConnect app. The goal is to be able to specify which applications should connect through the VPN. We would like that the process is transparent to the user. The user launches the application, the application opens a VPN connection. When the user closes the application, the VPN connection is disconnected. We have configure an App Catalog rule in order to deploy the app via a Managed Play Store and we have set the Application Type to "Mandatory". The App Configuration let us specify which apps have to be tunneled. Problem is that this App Configuration does not allow us to specify a username, a password and a group, only the host can be specified. Do you have an idea so that we can implement this solution? Does anyone use Cisco AnyConnect? Many thanks for your help and advice ! BR
We are using Zebra TC70x GMS devices running Android 7.1.2 and 8.1 with MobiControl using work Managed device and Lockdown Mode.The devices are connected using WiFi and with Secure Pulse VPN to connect to our network. We use Managed Google Play applications and app config to get the for automatic app installation and configuration. We also have Always On VPN enabled, we have set net.pulsesecure.pulsesecure in Feature Control, Always On VPN settings.We face two issues:- Always On VPNIf we enroll a new device or move a device between groups without and to Feature Control (and Always On VPN) enabled, Always On VPN connects automatically. But if we reboot the device it won't connect and go Always On (manually clicking connect works).After a reboot and the device going into Lockdown Mode, we can see a Secure Pulse icon in the notifications bar showing the VPN service is running. A couple of minutes later another icon is added showing a user certificate error message (unable to access users security certificate). Again, clicking Connect manually works.- Device offline with Always On VPN setting enabled in Feature ControlWe are unable to contact devices in groups with Feature Control / Always ON VPN enabled. In the MobiControl app, Agent status blinking Connected/Disconnected. Switching from Lockdown Mode to Admin Mode works, Agent status is Connected.If we move the device to a group without Feature Control / Always On VPN the device is connected, the same goes even if VPN is manually connected. This to me confirms the offline issue is related to Secure Pulse Always On VPN and MobiControl.We have allowed VPN traffic based on the recommendations below. MobiControl Deployment Server Note: For deployments with multiple deployment servers, for caching purposes. Binary 5495 MobiControl Management Server Binary 5494/5495 Google Play HTTPS 443 Remote Control Binary 5494 MobiControl Console Remote Control HTTPS (web sockets) 443 Agent version: 13.7.2 Build 1015Thankful for any ideas how to approach these issues.
Hi, Please help me to configure VPN IPsec Xauth PSK with Login and password at SOTI Mobicontrol platform to apply them on tablets with system Android + . very urgent. Thanks you for your return, Best Regards,
Hi all, Has anyone deployed Citrix SSO for Android Devices? I'm currently deploying it via an Application Catalog deployment rule but it requires user interaction to setup the connection. Does anybody know how to set the connection server without the user interaction? Thanks in advance, Héctor
It is possible to enable this VPN client or we can configure one of these clients that is compatible with SOTI MobiControl
Hi With Android Plus i have many Options for VPN, like F5 per App VPN, SSL VPN and IPSec. Are these VPN's on the Roadmap for Android Enterprise? With Android Enterprise i see only Pulse Secure and NetMotion Best regards Markus
I've created a VPN Android+ Profile and have assigned it to a Zebra TC51 running Android Nougat enrolled in Device Administrator mode. The Profile shows as being installed. Am I missing a step here?
Can I access intranet websites on public network without VPN from SOTI surf?
Top-tier experts who are delivering outstanding content. Should have more than 7000 points.
Experts who are consistent with great content. Should have more than 1000 points
Highly experienced members with valuable inputs. Should have more than 700 points
Beginners taking the initiative. Should have more than 500 points
