Microsoft Tunnel is a VPN gateway solution for Microsoft Intune fully integrated with Azure AD (and Conditional Access) to provide access to on-premises resources on iOS and Android devices. The early days of Microsoft Tunnel used separate Microsoft Tunnel apps for iOS and Android devices. One of the challenges with these devices is that there can only be one active VPN at a time. This is especially difficult when used in conjunction with Microsoft Defender for Endpoint. This makes it a logical step to integrate both products into one app. This has been the case for Android for some time and is now available in preview for iOS as well. This post describes configuration options for the Microsoft Defender for Endpoint app, how to deploy VPN profiles, and user experience.

Configuration options for the Microsoft Defender for Endpoint app

The Microsoft Defender for Endpoint app offers IT admins a variety of configuration options. Depending on your platform, you may have more or less configuration options. These configuration options allow the IT admin to enable web protection for her (anti-phishing), automatically include and configure a local VPN, or use the app for Microsoft Tunnel functionality only. . Additionally, the latest version of the Microsoft Defender for Endpoint app for iOS now offers the option to silently integrate with Microsoft Defender for Endpoint. This saves much of the required user interaction. The following table outlines the key-value pairs you can use to configure the Microsoft Defender for Endpoint app on iOS and Android. Regarding Microsoft Tunnel specifically, Defendertoggle (Android) and TunnelOnly (iOS) are the most interesting.

To know more about Microsoft Tunnel Gateway, visit O365Cloudexperts.