Release Notes
Abstract
MaaS360 adds per-app VPN support for organizations using Derived (PIV) Credentials with MaaS360.
Content
With this support, administrators can configure the list of managed apps that use the secure VPN connection. When the VPN profile reaches the device, MaaS360 allows only configured apps to use the VPN tunnel. When users open the app, it automatically connects to the VPN and routes the traffic through the VPN tunnel. When the app is inactive, the VPN is not used.
Prerequisite:
- Customers must have the Derived Credential service enabled in the MaaS360 Portal.
- Customers should have configured MaaS360 to work with one of the supported derived credential issuers: Purebred, Entrust, or Intercede.
- Customers should have configured VPN settings in the iOS MDM policies.
Configuring managed apps that use per-app VPN connection
You can configure the list of managed apps that use the per-app VPN connection through iOS policies in the MaaS360 Portal.
- From the MaaS360 Portal Home page, navigate to Security > Policies.
- Open an iOS policy.
- Navigate to Device Settings > VPN.
- Expand the VPN profile and ensure that the User Authentication Type is set to Certificate and Identity Certificate is set to Derived PIV Credentials.
- Under the Proxy Type > Apps to use this VPN setting, configure the list of managed apps that use the per-app VPN connection.
- Publish the policy.
[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSYSXX","label":"IBM MaaS360"},"ARM Category":[{"code":"a8m0z0000000712AAA","label":"INTEGRATIONS"},{"code":"a8m0z000000070yAAA","label":"POLICY"}],"Platform":[{"code":"PF014","label":"iOS"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
15 March 2023
UID
ibm16963648