Does AOVPN XML based Profile has all capabilities as Intune VPN profile

Mahesh Aralelemath 376 Reputation points
2020-09-25T15:34:21.903+00:00

Hi All,

Wondering that something not able to find in XML based AOVPN profile when compared to VPN profile which can be created in Intune itself directly.
From the below article, i could see that its possible to multiple DNS Suffix and persistent NRPT but not able to find how it can be achieved through XML based profile.

https://github.com/MicrosoftDocs/IntuneDocs/blob/master/intune/configuration/vpn-settings-windows-10.md

Appreciate if any one can help in this to add multiple DNS Suffix and Persistent NRPT to create XML based AOVPN profile and push through intune.

Currently profile is pushed based XML file and just wanted to update the same.

Regards
Mahesh

Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,059 questions
Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
838 questions
No comments
{count} votes

Accepted answer
  1. Crystal-MSFT 20,056 Reputation points Microsoft Employee
    2020-09-28T07:11:04.343+00:00

    @Mahesh Aralelemath , Intune VPN profile is recommended to be used which can include the DNS suffix and NRPT. But if you want to use xml based profile, we can try the following OMA-URI
    OMA-URI : VPNv2/<ProfileName>/ProfileXML
    Data Type: String (XML file)

    For the file, we can edit the Native profile example with our value. To add multiple DNS suffix, we can use comma to separate DNS suffixes.
    <DnsSuffix>corp.contoso.com,hello123.com</DnsSuffix>

    To add NRPT, we can edit the <DomainNameInformation> part.

    example in xml
    <DomainNameInformation>
    <DomainName>hrsite.corporate.contoso.com</DomainName>
    <DnsServers>1.2.3.4,5.6.7.8</DnsServers>
    <WebProxyServers>5.5.5.5</WebProxyServers>
    <AutoTrigger>true</AutoTrigger>
    </DomainNameInformation>
    <DomainNameInformation>
    <DomainName>.corp.contoso.com</DomainName>
    <DnsServers>10.10.10.10,20.20.20.20</DnsServers>
    <WebProxyServers>100.100.100.100</WebProxyServers>
    </DomainNameInformation>

    To set always on, we can set change the value to True in the example <AlwaysOn>True</AlwaysOn>
    https://learn.microsoft.com/en-us/windows/client-management/mdm/vpnv2-profile-xsd#native-profile-example

    Hope it can help.


    If the response is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


0 additional answers

Sort by: Most helpful