You can configure F5 Access for Windows 10 using Intune. In Windows 10, a number of features were added to auto-trigger VPN so you won’t have to manually connect when VPN is needed to access necessary resources. There are four different types of auto-trigger rules:
Refer to VPN auto-triggered profile options for more information.
Refer to How to: Add or delete users using Azure Active Directory for information on adding new users or deleting existing users from the Azure active directory.
Refer to How to: Create a basic group and add members using Azure Active Directory for information on creating a basic group using the Azure active directory portal.
Virtual private networks (VPNs) give users secure remote access to the company network. Devices use a VPN connection profile to initiate a connection with the VPN server.
To create a base VPN profile:
VPN profiles in Windows 10 can be configured to connect automatically on the launch of F5 Access. To configure App trigger:
Example of a PowerShell command to get package family name
Apps and Traffic Rules Screen
You can configure a domain name-based rule so that a specific domain name triggers the VPN connection.
Refer to Name-based trigger for information on configuring name-based trigger rule.
The Always On feature in Windows 10 enables the active VPN profile to connect automatically on the following triggers:
The Trusted Network Detection feature checks the DNS suffix on the physical interface to decide if a user is on a trusted corporate network. If the user is not on a trusted corporate network, the VPN gets triggered. Trusted network detection can be configured using the VPNv2/ProfileName/TrustedNetworkDetection setting in the VPNv2 CSP. This rule should be applied to an existing F5 Access connection.
To configure Trusted network detection:
OMA-URI settings for trusted network detection
After you create a profile, you can assign the profile to Azure active directory groups.
Refer to Assign user and device profiles for information on assigning a device profile in Microsoft Intune.