Configure the GlobalProtect App for iOS
While a third-party MDM system allows you to push configuration settings that allow access to your corporate resources and provides a mechanism for enforcing device restrictions, it does not secure the connection between the mobile endpoint and services it connects to. To enable the client to establish secure tunnel connections, you must enable VPN support on the endpoint.
The following table describes typical settings that you can configure using your third-party MDM system.
Type of connection enabled by the policy.
Identifier for the custom SSL VPN in reverse DNS format.
Host name or IP address of the GlobalProtect portal.
<hostname or IP address>For example: gp.paloaltonetworks.com
User account for authenticating the connection.
Authentication type for the connection.
Certificate | Password
(Certificate User Authentication only) Credential for authenticating the connection.
For example: clientcredial.p12
Enable VPN On Demand
(Optional) Domain and hostname that will establish the connection and the on-demand action:
<domain and hostname and the on-demand action>
For example:gp.acme.com; Never establish
GlobalProtect Portals Agent App Tab
GlobalProtect Portals Agent App Tab Select Network GlobalProtect Portals Agent App to specify how end users interact with the GlobalProtect agents installed on their systems. ...
Customize the GlobalProtect Agent
Customize the GlobalProtect Agent The portal agent configuration allows you to customize how your end users interact with the GlobalProtect agents installed on their systems ...
Remote Access VPN with Pre-Logon
Remote Access VPN with Pre-Logon Pre-logon is a connect method that establishes a VPN tunnel before a user logs in. The purpose of pre-logon is ...
GlobalProtect Portals Authentication Configuration Tab
GlobalProtect Portals Authentication Configuration Tab Select Network GlobalProtect Portals Authentication to configure several different types of GlobalProtect portal settings: An SSL/TLS service profile that the ...
Tunnel Settings Tab
Tunnel Settings Tab Select Network GlobalProtect Gateways Agent Tunnel Settings to enable tunneling and configure the tunnel parameters. Tunnel parameters are required if you are ...
GlobalProtect Certificate Best Practices
GlobalProtect Certificate Best Practices The following table summarizes the SSL/TLS certificates you will need, depending on which features you plan to use: Certificate Usage Issuing ...
Configure GlobalProtect to Retrieve Host Information
Configure GlobalProtect to Retrieve Host Information Follow these instructions to configure GlobalProtect to retrieve host information from devices managed by AirWatch. Install and configure the ...
Manage the GlobalProtect App Using a Third-Party MDM
Manage the GlobalProtect App Using a Third-Party MDM You can use any third-party mobile device management system, such as a mobile device management (MDM) system, ...
Configure the Portal to Authenticate Satellites
Configure the Portal to Authenticate Satellites In order to register with the LSVPN, each satellite must establish an SSL/TLS connection with the portal. After establishing ...