Azure VPN Client

Infamous-Ad-4861 · March 9, 2025, 3:16pm

Hi,

Have anyone deployed Azure VPN Client in Intune?

I have done it and it works, however, I would like to create a blacklist of some sort, that it will auto connect (which is default) but only when it is outside a specific office.

I don’t want it to connect when users are in the office. As of right now it autoconnects as soon as you start the PC since the default is .

Do anyone know how to create a blacklist of a certain external IP in the VPN Config?

Source: Create an Intune profile for Azure VPN clients - Azure VPN Gateway | Microsoft Docs

<VPNProfile>
   <!--<EdpModeId>corp.contoso.com</EdpModeId>-->
   <RememberCredentials>true</RememberCredentials>
   <AlwaysOn>true</AlwaysOn>
   <TrustedNetworkDetection>contoso.com,test.corp.contoso.com</TrustedNetworkDetection>
   <DeviceTunnel>false</DeviceTunnel>
   <RegisterDNS>false</RegisterDNS>
   <PluginProfile>
     <ServerUrlList>azuregateway-7cee0077-d553-4323-87df-069c331f58cb-053dd0f6af02.vpn.azure.com</ServerUrlList> 
     <CustomConfiguration>

     </CustomConfiguration>
     <PluginPackageFamilyName>Microsoft.AzureVpn_8wekyb3d8bbwe</PluginPackageFamilyName>
   </PluginProfile>
 </VPNProfile>

dnuohxof1 · March 9, 2025, 3:16pm

This should point you in the right direction. I did it this way and tied to a AAD Group so once we allow a user on VPN they’re added to this group which auto installs the client and imports the connection file info