Wireless Access

last person joined: yesterday 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

IOS VPN without using Via

This thread has been viewed 15 times

  • 1.  IOS VPN without using Via

    Posted Feb 07, 2017 11:50 AM

    Hi,

     

    We require an 'always on' VPN for ios devices. Via works fine on windows devices as the 'no user disconnect' feature is supported. We are stuggling to find a solution to IOS devices, as this feautre is not supported.

     

    Does anyone know if we can use the same via connection profile but use the native ios vpn and therefore lock this down? or use the native aruba VPN (not via) to work with ios devices?

     

    Any advised would be greatly apreciated.

     

    Thanks,

     



  • 2.  RE: IOS VPN without using Via

    Posted Feb 08, 2017 10:15 AM
    You could potentially use the PPTP VPN element on the controllers to terminate the iOS VPN. I have zero experience in setting up VPNs on iOS devices though!


  • 3.  RE: IOS VPN without using Via

    Posted Feb 08, 2017 11:33 AM

    Thanks for your response James,

     

    Would you expect ikev2 to work in this scenario?

     

    Have you tired this with other devices before? Windows clients?

     

    Cheers,

    Jack



  • 4.  RE: IOS VPN without using Via

    Posted Feb 08, 2017 12:00 PM

    Nope, ikev2 wont work. Here's the option you have for PPTP.

    pptp.jpg



  • 5.  RE: IOS VPN without using Via

    Posted Feb 08, 2017 12:06 PM

    What version are you running or license used, we dont have the PPTP option, just IPSEC?

     

    Cheers,

    Jack



  • 6.  RE: IOS VPN without using Via

    Posted Feb 08, 2017 12:25 PM
    You may need a PEFV license to see the PPTP options.


  • 7.  RE: IOS VPN without using Via

    EMPLOYEE
    Posted Feb 08, 2017 12:40 PM
    @jrwhitehead wrote:
    You may need a PEFV license to see the PPTP options.

    Not true.  That should be available in the base product.



  • 8.  RE: IOS VPN without using Via

    Posted Feb 13, 2017 10:36 AM

    So we are getting someone where trying to make the native ios vpn work with the controllers.

     

    Ikev2 looks to work, but the vpn tunnel never seems to establish on the phone, I can see the user in the user-table, Clearpass authenticates it to the correct role, but still the VPN does not establish.

     

    Any thoughts?

     



  • 9.  RE: IOS VPN without using Via
    Best Answer

    Posted Feb 20, 2017 05:35 AM

    VPN now works natively with IOS using Ikev2. Currently authenticating using Mschapv2, althought looking to move to Cert based auth.

     

     

     



  • 10.  RE: IOS VPN without using Via

    Posted Jul 06, 2021 12:42 PM
    Any tips on how you managed to get it working on IOS without the VIA app & did you manage to get it to authenticate with certificates?

    ------------------------------
    Andrew Tomlin
    ------------------------------

    Original Message