cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Tech Accelerator: Microsoft Intune Suite
Apr 11 2023 08:00 AM - Apr 12 2023 11:00 AM (PDT)
Find out more

How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

symm_adrian
Occasional Contributor

‎Jul 01 2019 09:32 AM

‎Jul 01 2019 09:32 AM

How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

Has anyone configured a Windows 10 Configuration Profile successfully? Is there a way to do it for Meraki Client VPN solutions that use L2TP+PSK or do I have to use a certificate? The documentation on this issue appears a bit vague.

 

Thanks!

11.7K Views
1 Like
9 Replies
Reply
9 Replies
Martin Norfolk

‎Jul 08 2019 06:54 AM

‎Jul 08 2019 06:54 AM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

I have the same question, so will be interested to see reply.

 

This Meraki article shows how to configure a VPN profile on Windows 10...

https://documentation.meraki.com/MX/Client_VPN/Client_VPN_OS_Configuration#Windows_10

but this uses L2TP with PSK.

 

Intune Device Configuration policies support VPN settings with L2TP and a certificate (but not with a Pre-Shared Key).

If I could work out how to use an authentication certificate, then that would be the better option.

 

This MS article describes how to use EAP and output the necessary XML for Intune, but I can't seem to link this to Meraki MX firewalls...

https://docs.microsoft.com/en-us/windows/client-management/mdm/eap-configuration

 

Has anyone got the final piece of this jigsaw puzzle?

 

Thanks.

1 Like
Reply
symm_adrian

‎Jul 08 2019 07:16 AM

‎Jul 08 2019 07:16 AM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

@Martin Norfolk I haven't gotten any traction with this other than finding CMAK (Connection Manager Administrator Kit), the feature/role you can install on Windows Server to create a connection and then distribute to your end users.

 

https://newhelptech.wordpress.com/2017/07/12/step-by-step-how-to-create-connection-manager-administr...

 

 

0 Likes
Reply
e-10_808

‎Jul 25 2019 01:25 PM

‎Jul 25 2019 01:25 PM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

Try editing the VPN network connection settings in the old windows interface and disable IPv6 @symm_adrian 

0 Likes
Reply
nhammade

‎Jan 18 2021 02:54 PM

‎Jan 18 2021 02:54 PM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

Please let me know if you have solved this issues I have the same issues with L2TP and PreSHared kep@symm_adrian 

1 Like
Reply
ashokdangol

‎Jul 29 2022 10:46 PM

‎Jul 29 2022 10:46 PM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

has anyone come up with any idea? I have a similar problem. 

0 Likes
Reply
nhammade

‎Jul 29 2022 10:57 PM

‎Jul 29 2022 10:57 PM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

@ashokdangol  I’m still looking, nothing yet from my side hopefully some can help us.

@microsoft @symm_adrian 

0 Likes
Reply
somesh_pathak

‎Jul 31 2022 01:53 PM

‎Jul 31 2022 01:53 PM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

Hi Symm_Adrian,
If you are trying to connect your Win10 devices with authentication on CISCO infra e.g. WiFi, LAN or VPN or with 802.1x authentication, then it is possible using certificates. You need to deploy custom XML profiles.
0 Likes
Reply
ashokdangol

‎Jul 31 2022 04:44 PM

‎Jul 31 2022 04:44 PM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

@somesh_pathak we have ubiquiti router which only allow L2TP psk VPN. Can I ask if you have any idea to create EAP XML with L2tp PSK? I think we should ask for feature request. :) 

 

0 Likes
Reply
somesh_pathak

‎Aug 02 2022 01:42 AM

‎Aug 02 2022 01:42 AM

Re: How to deploy a Windows 10 VPN Profile? Meraki Client VPN (L2TP+PSK)

@ashokdangol We faced the same issue with connecting AO VPN with L2TP on AO VPN on AAD & Hybrid AAD join device and worked with MS for months and eventually concluded that L2TP will not work in these scenarios. However, we were able to achieve it using custom PS scripts. We created two adapters for the device tunnel & user tunnel. These scripts can be packaged as a win32 packages or can be transformed into XML for Intune VPN profile. You can refer to the excellent script from Richard Hicks to create your own custom XML - aovpn/ProfileXML_Device.xml at master · richardhicks/aovpn (github.com)

 

Deploy these PS manually on a test machine in the system context and then export the eap XML, which you can later import in Intune. Hope this helps.:smiling_face_with_smiling_eyes:

0 Likes
Reply