In the previous article we discussed about the differentiating features of Knox VPN and in this blog we would be shedding light on key requirements for the setup compliance. In addition, we present certain key-points to help you resolve any issues while setting up and where can you look for help.
What do target devices require to successfully run the Knox VPN framework?
The target device must have the following:
- A VPN client integrated with the Knox VPN framework installed on the device.
- See VPN Clients That Implement the Knox VPN Framework for a list of clients from which you can choose.
- See also Optional Knox VPN APIs for Third-Party VPN Clients for a list of APIs which may, or may not be implemented by third-party vendors.
- The vendor-specific parameters for third-party VPN clients that help define the VPN profile.
- A valid Knox license with VPNpermission— "com.samsung.android.knox.permission.KNOX_VPN_GENERIC"
- If you want to control basic VPN configuration through the Android O Settings screen, you must download the add-on APK from Samsung and install it in the main user.
Should you install the VPN client inside or outside the Work Profile?
You can go for either option, depending upon your requirements. For example, if you have two containers created on your device, you can install the VPN client outside the Work Profile so that it is available to both containers. Conversely, if you install the VPN client inside one container, the VPN client is not available to the other container.
How do I troubleshoot VPN configuration issues?
- After pushing the Knox VPN client using MDM solution to your devices, verify that it appears on both the personal space and on the Work Profile on the device.
- Verify that your VPN credentials are correct by manually setting up VPN in the personal space.
- Verify that you can connect to the Knox VPN gateway.
- If you can't connect to the Knox VPN gateway and:
- you are connected to a firewall, change your access point and try again.
- you aren't connected to a firewall, try to connect to any website using the device browser. If you can't access any of the websites, contact Samsung Knox Support.
- If the issue persists, capture log files and contact Samsung Knox Support.
- Pulse Secure
- Mobile Iron
- Air Watch
- Net Motion
Talking of troubleshooting problems, our next article is on troubleshooting device issues. So keep yourself posted and keep learning.
To learn more about:
- The advantages offered by Samsung Knox devices over non-Samsung devices, see the KPE Feature Comparison Table.
- Other KPE features, see the KPE White Paper.
- How to use the VPN features on the Knox SDK, read the Knox SDK Developer Guide.
- Common questions asked when trying to use VPNs with Knox, read the Knox Platform in-depth article on Understanding and using Knox VPNs