question

MarcKuhn-6211 avatar image
0 Votes"
MarcKuhn-6211 asked ShwetaMathur commented

Configuring Microsoft Always On VPN User Tunnel with Conditional Access via Endpoint Manager

Hi guys

i'm trying to have a PoC environment up and running with Microsoft Always On VPN User Tunnel with Conditional Access. I'm able to do a Hybrid Join with the Device Tunnel successfully. Also i can deploy with SCEP a Device and User Certificate and have a Configuration Profile, with which i have the User Tunnel up and running as well, but without the Conditional Access.

I tried to follow the Doc's from Microsoft but i'm failing to have it working with this guide:

https://docs.microsoft.com/en-us/windows-server/remote/remote-access/vpn/ad-ca-vpn-connectivity-windows10

Has anybody done that with the current version of Windows 10 and Intune? My User Tunnel is just starting up, no question about the MFA.

Thanks for any hints on that. I'm struggling since a while with this topic

Best regards,
Marc

azure-ad-conditional-access
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

@MarcKuhn-6211 ,
This is quite problematic to troubleshoot . I would suggest you to start with the Conditional access logs from Azure Portal . Try the report-only mode once you have deployed the policy . As you have mentioned that you already have multiple things working in this setup . I would suggest to use What-If functionality in conditional access to find out the issues with your implementation. If you are able to get it working , please do share the solution .


0 Votes 0 ·

0 Answers