I was given the task to deploy an AzureVPNConfig.xml to all Windows 10 workstations via Intune. I have not done this before and was also given this link: Configure Azure VPN Client - Azure AD authentication - Windows - Azure VPN Gateway | Microsoft Docs. This article states that " You can import the profile from a command-line prompt by placing the downloaded azurevpnconfig.xml file in the %userprofile%\AppData\Local\Packages\Microsoft.AzureVpn_8wekyb3d8bbwe\LocalState folder and running the following command: azurevpn -i azurevpnconfig.xml".
Now this location is in a user profile and users are not administrators. I’m not sure if this command runs correctly without admin rights. Also, this command would need to run after the Azure VPN Universal Windows app is installed which as all UWP apps installs on the User account side, not device. How are others installing this, or should this be done some other way like via a VPN Configuration Profile.
Attached is a picture of the XML as well. Thank you for the guidance.
If you are doing this from Intune then its a policie you configure.
ou are doing this from Intune then its a poli
Nope…doesn’t work with things that require you to use the Azure VPN client.
I saw that but I don’t think this is an always on VPN. They want to only connect when they need to. The options in the Azure portal are not the same as the guide you linked to.
Not sure what part is not working but that is actually how many companies have set this up. You push the always on profile from Intune. Not sure if im missing what you are trying to do. But i can assure you a always on profile pushed from Intune is working
Then you just change the value in the xml from always on true to false same profile
You are going to the Enterprise application itself in azure.If you check the guides first 10 lines you see where to go.
Same info is stated in the Microsoft documentation you are referring to.
Before you can connect and authenticate using Azure AD, you must first configure your Azure AD tenant. For more information, see Configure an Azure AD tenant. For more information about point-to-site, see About point-to-site VPN.
Prerequisite:
You already have a Point-to-Site VPN setup in your tenant.
