How to remotely configure CrowdStrike Falcon VPN using MDM?
Description
CrowdStrike Falcon VPN provides secure, policy-driven access to corporate resources, ensuring that only trusted and compliant devices connect to organizational networks. By integrating CrowdStrike Falcon VPN with MDM, IT admins can centrally configure, distribute, and enforce VPN settings across managed devices. This integration helps maintain enterprise security standards by:
- Enforcing Zero Trust access to company applications and data.
- Protecting remote and hybrid workforce with encrypted traffic.
- Ensuring only compliant, managed devices connect to corporate resources.
- Reducing manual configuration by automating VPN deployment through MDM.
Steps to configure CrowdStrike Falcon VPN for Apple Devices
CrowdStrike Falcon VPN for Apple Devices can be configured using the given methods:
Per-App VPN
Per-App VPN can be used for both supervised and unsupervised iOS devices. Follow the below steps to create a Per-App VPN:
- On the MDM console, click on Device Mgmt->App Repository->+Add App->Apple Store App. Search for "CrowdStrike Falcon" app and add the app to the App Repository. For detailed information on Managing Apple Apps on MDM visit our Apple App Management guide.
- On the MDM Console, navigate to Device Mgmt->Profiles->+Create Profile->iOS/iPadOS profile. Provide a Profile name and description and click Continue.
- Navigate to the Per-App VPN tab and provide the given details:
- Specify the Apps to use this VPN : CrowdStrike Falcon
- Automatically connect to this VPN, when using the selected app : Yes
- Secure network communication using : App Proxy
- Connection type : Custom SSL
- Connection name : Per-App VPN Configuration
- App Name : CrowdStrike Falcon
- Plugin Identifier : "com.crowdstrike.falconmobile"
- Server name/IP address : crowdstrike.com
- Account : %username%
- Provide the required custom data
- Choose the User Authentication type as "Password".
- Click on Save and Publish the Profile. Distribute this Profile to the targeted devices or the groups.
Web Content Filter
Web Content Filter is only for supervised iOS devices. Follow the below steps to create a Content Filter:
- On the MDM console, click on Device Mgmt->App Repository->+Add App->Apple Store App. Search for "CrowdStrike Falcon" app and add the app to the App Repository. For detailed information on Managing Apple Apps on MDM visit our Apple App Management guide.
- On the MDM Console, navigate to Device Mgmt->Profiles->+Create Profile->iOS/iPadOS profile. Provide a Profile name and description and click Continue.
- Navigate to the Web Content Filter tab and provide the given details:
- Filter Type: "Plug-in"
- Filter Name: CrowdStrike Falcon
- Plugin bundle id: "com.crowdstrike.falconmobile"
- Filter Socket" "Yes"
- Webkit: "NO
- Provide the Vendor Configuration Details such as Cloud_id, Customer_id, hostname, provisioning_token, skip_legal, user_email.
- Click on Save and Publish the Profile. Distribute this Profile to the targeted devices or the groups.
Notes: Falcon for Mobile does not support configuring both a Content Filter and a Per-App VPN on the same device. Enabling both simultaneously may lead to unexpected or undesirable behaviour.
Steps to configure CrowdStrike Falcon VPN for Android Devices
- On the MDM console, click on Device Mgmt->App Repository->+Add App->Android->PlayStore App.
- Search for "CrowdStrike Falcon" app and select the App. Click on Save and Sync.
- The App will be added to MDM App repository. Open the App and navigate to "Configurations" tab and provide the below shown details. Click on Save.
- Distribute the CrowdStrike Falcon apps to the targeted devices or groups. For detailed information on Managing Android Apps on MDM visit our Android App Management guide.
Free Edition