Apple Business User Guide
- Welcome
-
-
-
- Intro to Configurations
-
- AirDrop configuration
- AirPlay configuration
- AirPrint configuration
- App Access configuration
- Apple Intelligence & Siri configuration
- Application Layer Firewall configuration
- Certificate configuration
- Content Caching configuration
- Custom configuration
- Data Management configuration
- Energy Saver configuration
- FileVault configuration
- Gatekeeper configuration
- iCloud configuration
- Lock Screen configuration
- Password and Screen Unlock configuration
- Software Update configuration
- VPN configuration
- Web Clip configuration
- Web Filter configuration
- Wi-Fi configuration
- Edit a configuration
- Apply Blueprints
-
- Glossary
- Document revision history
- Copyright and trademarks
Create a VPN configuration in Apple Business
You can use the VPN (virtual private network) configuration to configure either L2TP over IPsec or Cisco IPsec for managed Apple devices. You need to have a VPN service from a network provider or other organization already configured so that devices can connect to it.
In Apple Business, sign in with a user whose role has permissions to create, edit, and delete device configurations.
To view roles and permissions, see Intro to roles and permissions.
In your browser, choose Devices > Configurations > All Configurations.
Select All Configurations, select Add
next to VPN 
, then enter a name for the configuration.Choose the platforms to create the configuration for, such as:
iOS/iPadOS
macOS
visionOS
Set any of the following:
Configuration
Description
Connection method
Specifies L2TP over IPsec or Cisco IPsec.
Server hostname
Specifies the IP address or fully qualified domain name (FQDN) of the VPN server.
Group name
Specifies the group identifier for the VPN connection.
Used for the Cisco IPsec configuration.
Shared secret
Specifies the shared secret for the VPN connection.
Hybrid authentication
Allows authentication using the group name, secret, and a server-side certificate.
Used for the Cisco IPsec configuration.
Send all traffic through the VPN connection
Specifies whether to send all traffic through the VPN connection.
Used for the L2TP over IPsec configuration.
Proxy type
Specifies automatic or manual configuration.
Proxy URL
Specifies the URL of a PAC file—for example, https://www.melardclothing.com/filename.pac.
Used for automatic configuration.
Proxy hostname
Specifies the IP address or fully qualified domain name (FQDN) of the proxy server.
Used for manual configuration.
Proxy port
Specifies the port number of the proxy server.
Used for manual configuration.
Select Save.