Does AOVPN XML based Profile has all capabilities as Intune VPN profile

Mahesh Aralelemath 386 Reputation points
2020-09-25T15:34:21.903+00:00

Hi All,

Wondering that something not able to find in XML based AOVPN profile when compared to VPN profile which can be created in Intune itself directly.
From the below article, i could see that its possible to multiple DNS Suffix and persistent NRPT but not able to find how it can be achieved through XML based profile.

https://github.com/MicrosoftDocs/IntuneDocs/blob/master/intune/configuration/vpn-settings-windows-10.md

Appreciate if any one can help in this to add multiple DNS Suffix and Persistent NRPT to create XML based AOVPN profile and push through intune.

Currently profile is pushed based XML file and just wanted to update the same.

Regards
Mahesh

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,368 questions
Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,707 questions
0 comments
Accepted answer
  1. Crystal-MSFT 42,631 Reputation points Microsoft Vendor
    2020-09-28T07:11:04.343+00:00

    @Mahesh Aralelemath , Intune VPN profile is recommended to be used which can include the DNS suffix and NRPT. But if you want to use xml based profile, we can try the following OMA-URI
    OMA-URI : VPNv2/<ProfileName>/ProfileXML
    Data Type: String (XML file)

    For the file, we can edit the Native profile example with our value. To add multiple DNS suffix, we can use comma to separate DNS suffixes.
    <DnsSuffix>corp.contoso.com,hello123.com</DnsSuffix>

    To add NRPT, we can edit the <DomainNameInformation> part.

    example in xml
    <DomainNameInformation>
    <DomainName>hrsite.corporate.contoso.com</DomainName>
    <DnsServers>1.2.3.4,5.6.7.8</DnsServers>
    <WebProxyServers>5.5.5.5</WebProxyServers>
    <AutoTrigger>true</AutoTrigger>
    </DomainNameInformation>
    <DomainNameInformation>
    <DomainName>.corp.contoso.com</DomainName>
    <DnsServers>10.10.10.10,20.20.20.20</DnsServers>
    <WebProxyServers>100.100.100.100</WebProxyServers>
    </DomainNameInformation>

    To set always on, we can set change the value to True in the example <AlwaysOn>True</AlwaysOn>
    https://learn.microsoft.com/en-us/windows/client-management/mdm/vpnv2-profile-xsd#native-profile-example

    Hope it can help.

    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest