
close
close
Deploying virtual private network (VPN) profiles to Windows has never been easy. And using Intune wasn’t always a walk in the park either. And while VPN profiles could be easier to implement, what we have in Intune today is relatively simple compared to using Group Policy and the Connection Manager Administration Kit (CMAK).
advertisment
In this article, I’m going to deploy a PPTP VPN to Windows 10, but you can use the instructions to deploy other types of VPN. Intune supports several different protocols with the built-in Windows 10 VPN client, including IKEv2, L2TP and SSL. L2TP, SSL, and PPTP require the use of the Extensible Authentication Protocol (EAP). IKEv2 VPNs require use of EAP or machine certificates. It’s also worth noting that there’s no support for VPN configurations that use pre-shared keys (PSK) and any client certificates must be deployed independently of the VPN configuration.
Intune also caters for a range of third-party VPN solutions, including Pulse Secure, F5 Access, SonicWall Mobile Connect, Check Point Capsule VPN, Citrix, and Palo Alto Networks GlobalProtect. If using a third-party VPN solution, you need to make sure that the VPN app is installed on devices. Apps can be installed with Intune, but it is out-of-scope for this article.
Intune requires an EAP XML configuration, so you’ll need to set up a VPN connection manually in Windows 10 before you can export its EAP XML configuration. The Windows 10 Settings app lets you manually set up a VPN, but it doesn’t provide access to advance configuration features. Nevertheless, you can start by setting up your VPN manually in the Settings app and then complete the configuration using the legacy Control Panel; or complete the whole process in the Control Panel.
How to Configure a Windows 10 VPN Profile Using Microsoft Intune (Image Credit: Russell Smith)
Once the VPN is set up, you can use PowerShell to export the EAP configuration.
advertisment
$a = Get-VpnConnection -Name “Petri VPN”
$a.EapConfigXmlStream.InnerXml
How to Configure a Windows 10 VPN Profile Using Microsoft Intune (Image Credit: Russell Smith)
You now have everything you need to configure the VPN profile in Intune.
How to Configure a Windows 10 VPN Profile Using Microsoft Intune (Image Credit: Russell Smith)
Now that you have a VPN profile setup in Intune, you need to assign it to users and/or devices.
How to Configure a Windows 10 VPN Profile Using Microsoft Intune (Image Credit: Russell Smith)
Now all you need to do is log in to a device managed by Intune and that is in scope of the assignment, and you should see the new VPN profile provisioned. You can check the profile was deployed by clicking on the network icon in the system tray at the far right of the taskbar. The VPN profile should appear in the list of networks.
advertisment
How to Configure a Windows 10 VPN Profile Using Microsoft Intune (Image Credit: Russell Smith)
In an upcoming article, I will show you how to deploy certificates to Windows 10 using Intune.
More from Russell Smith
advertisment
Petri Newsletters
Whether it’s Security or Cloud Computing, we have the know-how for you. Sign up for our newsletters here.
advertisment
More in Windows 10
IT Admins Report Issues With Microsoft Store Version of Quick Assist App
May 16, 2022 | Rabia Noureen
This Week in IT - Windows 10 Gets Search Highlights and Is Microsoft in Hot Water Over Windows Cloud Pricing?
Apr 15, 2022 | Russell Smith
Most popular on petri
Log in to save content to your profile.
Article saved!
Access saved content from your profile page. View Saved
Join The Conversation
Create a free account today to participate in forum conversations, comment on posts and more.
Copyright ©2019 BWW Media Group