SOTI Pulse Logo

Android Plus VPN F5 SSL Configuration

ER
Enrico Rossi Ferrari
SECH Terminal Contenitori Porto di Genova S.p.A.

Hi all,

this is my environment:

 
Server Version: 15.1.0.3416
Device: Honeywell RT10A (Android Version 9)
Agent Version: HoneywellMobiControl1440NewGen_1028.apk
 
Reading the documentation the profile Per App VPN: F5 SSL should be possible to automatically start a vpn connection when an app initiates network communications. Is that correct?
 
At the moment i have configured a lockdown with two buttons: Sonicwall Mobile Connect and Ivanti Velocity.
 
I'm trying to configure the device with one single button so that when the user starts the browser (Ivanti Velocity) also the connection is started.

On the device is already assigned an authentication profile.

The installation fails with the message "failed to install, because all of its payloads cannot be installed".

Are there any other requirements needed?

Do you have any suggestions? 

Thank you really much in advance.

vpn-ssl
4 years ago
Android
ANSWERS
RC
Raymond Chan Diamond Contributor
4 years ago

Do you have problem deploying all profile(s) other than the one with authentication payload?  Have you tried having the F5 Per-App VPN payload included in a dedicated profile for deployment and check the result?

What are the active MDM API's reported by the device agent or in the web-console?

According to your post, you should be using OEM specific Android Plus device agent.  If I remember correctly, Per-App VPN profile payload is only supported for a very small set of Android Plus device agents, and likely not for the Honeywell device agent. You might have to confirm this with Soti support team directly to confirm.

ER
Enrico Rossi Ferrari
4 years ago

Hi Raimond, thanks for your reply.

We don't have any problem with other profiles deployment, just this one - that already is a dedicated one and fails.

These are MDM API's supported: RC Virtual Display, Enterprise 4.1, Advanced Android Plus 1.0, Android Plus 1.16.
 
I confirm that we are using Honeywell specific Android agent.
 
 
What is the correct procedure to get Soti support team's confirms that this is not possible?
 
 
Thanks
RC
Raymond Chan Diamond Contributor
4 years ago (edited 4 years ago)

Send an email to directly to support@soti.net

If you are lucky, Soti moderator or other experts from Soti on this topic might also directly give an answer in this forum if they see this thread.

ER
Enrico Rossi Ferrari
4 years ago

Thank you Raymond.

I'll follow your suggestment.

J
JSMOD@SOTI
4 years ago

Hi Enrico,

Thank you for requesting an answer on this post.

To progress your issue, it would probably be most efficient to open this as a case with SOTI Support (support@soti.net) since ideally we will need to investigate device logs to see what is happening when the Profile is being pushed.

In terms of compatibility, for your scenario the basic prerequisites would be to have an OEM-signed agent and ensure that any necessary third-party apps are already installed on the device when the Profile is pushed otherwise it will fail, but it seems you already have the browser installed. I will carry out further research and update this thread with some more information to verify the this.

Kind regards,

ER
Enrico Rossi Ferrari
4 years ago

Thank you JSMOD for your reply.

I've opened a case with the support team.

Bye

J
JSMOD@SOTI
4 years ago

Hi Enrico,

Just to follow up my previous comment, I have checked this and my understanding is that OEMs need to be whitelisted by the VPN provider to work. So from the information you have provided there is a chance that F5 has not whitelisted Honeywell devices.

However, more testing should be carried out with the Profile configuration and an investigation into the device logs, so for this reason it is very good that you have already opened a Support ticket with us.

Many thanks,

Similar Discussions