Deploy new Azure VPN profile (.xml) through intune.

kvidhul-3447 0 Reputation points
2024-08-15T20:04:07.2966667+00:00

Hi,

i have to update user devices with new Azure VPN profile through intune.

I have existing profile already deployed and now i want to replace this with new one.

./User/Vendor/MSFT/VPNv2/<profile>/ProfileXML

i am getting error 0x87d101f4.

tried creating new profile with new name and new configuration (.xml) but still i am getting error.

Also excluded the test users from original vpn policy. Still having the error.

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,513 questions
Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,876 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
4,953 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Konstantinos Passadis 19,066 Reputation points MVP
    2024-08-15T20:10:53.92+00:00

    Hello @kvidhul-3447

    Please try these steps

    Create a Policy-Config to remove current profileThen try to add the new one

    Taken from the link

    Follow the steps below to replace with your tenant info

    Line 5: Modify the <TrustedNetworkDetection> setting to the DNS suffix, your DHCP server is sending out to your clients. This will be used to determine if a device is connected to the internal network or external. For example: contoso.local. Line 9: Modify the <ServerUrlList> setting. Line 18: Modify the <issuer> setting https://sts.windows.net/TENANTID/. Line 19: Modify the <tenant> setting https://login.microsoftonline.com/TENANTID/. Line 31: Modify the <name> setting. This is the VNET name. Line 41: Modify the <fqdn> setting. This value can be found in the AzureVPN/azurevpnconfig.xml file which is in the downloaded from Azure. Line 46: Modify the <hash> setting. This value can be found in the AzureVPN/azurevpnconfig.xml file which is in the downloaded from Azure. Line 50: Modify the <serversecret> setting. This value can be found in the AzureVPN/azurevpnconfig.xml file which is in the downloaded from Azure.

     

    Save it as new XML file in order to import to OMA URI Setting.

     

     

    In order to override your existing file:

     

    OMA-URI Setting should be like below:

     

    Name: Give it a name

    Description: Give it description

    OMA-URI: ./User/Vendor/MSFT/VPNv2/NAME OF YOUR EXISTING PROFILE/ProfileXML

    Data Type: String (XML File)

    I hope this helps!

    Kindly mark the answer as Accepted and Upvote in case it helped!

    Regards


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.