Configuration tasks overview for MobileIron Tunnel for Android native (Cloud)
The following configuration tasks are required to set up MobileIron Tunnel. These configuration tasks are performed in MobileIron Cloud.
- Creating a MobileIron Tunnel VPN configuration for Android native (Cloud)
- Adding and configuring the MobileIron Tunnel app (Cloud)
Before you begin
- If you are configuring app VPN, ensure the following:
- You have created a MobileIron Tunnel service for Android in Standalone Sentry. For information on setting up Standalone Sentry with a MobileIron Tunnel service, see “Working with Standalone Sentry for AppTunnel” in the Standalone Sentry Guide for MobileIron Cloud.
- Standalone Sentry is set up to use identity certificates for device authentication.
- You have created an Identity Certificate configuration in MobileIron Cloud. The identity certificate generated must be trusted by the certificate chain in the certificate you uploaded to Standalone Sentry for device authentication.
- If you are configuring MobileIron Tunnel for securing authentication traffic with MobileIron Access, ensure that you have setup MobileIron Access. For information about setting up MobileIron Access see the MobileIron Access Guide. As part of the Access setup, you will have created a MobileIron Tunnel service.
Creating a MobileIron Tunnel VPN configuration for Android native (Cloud)
Create a MobileIron Tunnel VPN configuration in Configurations.
Procedure
- In MobileIron Cloud, go to Configurations > +Add.
- Search for MobileIron Tunnel.
- Click the MobileIron Tunnel configuration.
The Create MobileIron Tunnel Configuration page displays. - Enter a name for the configuration and click Android.
The configuration fields for Tunnel VPN for Android are displayed. - Add the necessary configurations and click Next.
- Choose a distribution option for the configuration and click Done.
The configuration is distributed to the subset of the devices to which the app is distributed. Select the same distribution option that you selected for the MobileIron Tunnel for Android app.
Next steps
Adding and configuring the MobileIron Tunnel app (Cloud).
- For a description of the configuration fields, see Tunnel for Android native configuration field description.
- For a description of the key-value pairs, see Custom data key-value pairs for Tunnel for Android native and Samsung Knox Workspace.
Adding and configuring the MobileIron Tunnel app (Cloud)
Upload the MobileIron Tunnel app to MobileIron Cloud from Google Play and configure it to make it available to Android devices. You can download the app from Google Play.
Procedure
- In the MobileIron Cloud portal, go to Apps >App Catalog.
- Click +Add next to App Catalog.
- Select Google Play from the catalog pulldown menu.
- Use the search to locate the MobileIron Tunnel app in the Google Play store.
- Select the MobileIron Tunnel app and click Next.
A description and screen shots of the app are displayed. - Make changes, as needed, and click Next.
- Select an app delegation option, and click Next.
- Select a distribution option and click Next.
The configuration will be distributed to the devices in the group you selected. - Click Install Application configuration settings to configure the install options.
- Edit the Name and Description of the settings if necessary.
- Install on Device: Enable Install on devices, if you want to require that the app is installed on devices.
- Silently install on Samsung KNOX and Zebra devices: This option is not applicable to Android native apps.
- Do not show app in end user App Catalog: Select if you do not want the app displayed in the MobileIron app catalog on users’ devices.
- Click Next.
- Click Promotion distribution configuration settings and select a promotion option.
The promotion option determines how the app appears in the app catalog on the device. - Click Next and then click Done.
See the MobileIron Cloud Guide or help for more information on adding apps to the MobileIron Cloud app catalog.