Microsoft Intune 中 Android 裝置的 VPN 設定VPN settings for Android devices in Microsoft Intune

適用對象:Azure 入口網站的 IntuneApplies to: Intune in the Azure portal
您需要傳統入口網站的 Intune 相關文件嗎?Looking for documentation about Intune in the classic portal? 請移至這裡Go here.

身為 Intune 系統管理員,您可為下列平台進行 VPN 設定:As an Intune admin, you can configure VPN settings for the following platforms:

以下所列的值並非全部都能設定,須取決於您選擇的設定。Depending on the settings you choose, not all values listed below are configurable.

Android VPN 設定Android VPN settings

連線名稱 - 輸入此連線的名稱。Connection name - Enter a name for this connection. 當使用者瀏覽其裝置尋找可用 VPN 連線的清單時,使用者會看到此名稱。End users will see this name when they browse their device for the list of available VPN connections.

  • IP 位或 FQDN - 提供裝置要連線之 VPN 伺服器的 IP 位址或完整網域名稱。IP address or FQDN - Provide the IP address or fully qualified domain name of the VPN server that devices will connect to. 範例:192.168.1.1vpn.contoso.comExamples: 192.168.1.1, vpn.contoso.com.
  • 驗證方法 - 從下列各方式中選擇裝置對 VPN 伺服器的驗證方式︰Authentication method - Choose how devices will authenticate to the VPN server from:
    • 憑證 - 選取您先前建立用於驗證連線的 SCEP 或 PKCS 憑證設定檔。Certificates - Select a SCEP or PKCS certificate profile you previously created to authenticate the connection. 如需憑證設定檔的詳細資訊,請參閱如何設定憑證For more details about certificate profiles, see How to configure certificates.
    • 使用者名稱與密碼 - 使用者必須提供使用者名稱及密碼才能登入 VPN 伺服器。Username and password - End users must supply a user name and password to log into the VPN server.
  • 連線類型 - 從下列廠商清單中選取 VPN 連線類型︰Connection type - Select the VPN connection type from the following list of vendors:

    • Check Point Capsule VPNCheck Point Capsule VPN
    • Cisco AnyConnectCisco AnyConnect
    • Dell SonicWALL Mobile ConnectDell SonicWALL Mobile Connect
    • F5 Edge ClientF5 Edge Client
    • Pulse SecurePulse Secure
    • CitrixCitrix
  • 指紋 (僅限 Check Point Capsule) - 指定用以確認 VPN 伺服器可茲信任的字串 (例如 "Contoso Fingerprint Code")。Fingerprint (Check Point Capsule VPN only) - Specify a string (for example, "Contoso Fingerprint Code") that will be used to verify that the VPN server can be trusted. 指紋可以傳送至用戶端,如此用戶端才知道連線時可以信任有相同指紋的任何伺服器。A fingerprint can be sent to the client so it knows to trust any server that presents the same fingerprint when connecting. 若裝置還未設定指紋,會在顯示指紋 (使用者手動驗證指紋,並選擇 [信任] 進行連線) 時,提示使用者信任所要連線的 VPN 伺服器。If the device doesn’t already have the fingerprint, it will prompt the user to trust the VPN server that they are connecting to while showing the fingerprint (The user manually verifies the fingerprint and chooses trust to connect).

  • 為 Citrix VPN 屬性輸入索引鍵/值組 (僅限 Citrix) - 輸入 Citrix 提供的索引鍵/值組,以設定 VPN 連線的內容。Enter key and value pairs for the Citrix VPN attributes (Citrix only) - Enter key and value pairs, provided by Citrix, to configure the properties of the VPN connection.

Android for Work VPN 設定Android for Work VPN settings

連線名稱 - 輸入此連線的名稱。Connection name - Enter a name for this connection. 當使用者瀏覽其裝置尋找可用 VPN 連線的清單時,使用者會看到此名稱。End users will see this name when they browse their device for the list of available VPN connections.

  • IP 位或 FQDN - 提供裝置要連線之 VPN 伺服器的 IP 位址或完整網域名稱。IP address or FQDN - Provide the IP address or fully qualified domain name of the VPN server that devices will connect to. 範例:192.168.1.1vpn.contoso.comExamples: 192.168.1.1, vpn.contoso.com.
  • 驗證方法 - 從下列各方式中選擇裝置對 VPN 伺服器的驗證方式︰Authentication method - Choose how devices will authenticate to the VPN server from:
    • 憑證 - 選取您先前建立用於驗證連線的 SCEP 或 PKCS 憑證設定檔。Certificates - Select a SCEP or PKCS certificate profile you previously created to authenticate the connection. 如需憑證設定檔的詳細資訊,請參閱如何設定憑證For more details about certificate profiles, see How to configure certificates.
    • 使用者名稱與密碼 - 使用者必須提供使用者名稱及密碼才能登入 VPN 伺服器。Username and password - End users must supply a user name and password to log into the VPN server.
  • 連線類型 - 從下列廠商清單中選取 VPN 連線類型︰Connection type - Select the VPN connection type from the following list of vendors:

    • Check Point Capsule VPNCheck Point Capsule VPN
    • Cisco AnyConnectCisco AnyConnect
    • Dell SonicWALL Mobile ConnectDell SonicWALL Mobile Connect
    • F5 Edge ClientF5 Edge Client
    • Pulse SecurePulse Secure
  • 分割通道 - 若啟用,可讓特定 Web 流量在開啟 VPN 時使用 VPN 連線,而其他流量則使用網際網路。Split tunneling - Enable to let certain web traffic use the VPN connection when the VPN while other traffic uses the internet. 如果您想要所有流量都在 VPN 作用中時使用 VPN,請停用此設定。Disable this setting if you want all traffic to use the VPN when active.