next to the selected connection on the Connection tab. The Edit Connection screen displays.Firewall and SRA Appliance Connections,
E-Class SRA Appliances Connection,
Connect to Mobile Connect Server,
Firewall and SRA Appliance Connections
1. The first time you launch Mobile Connect, you must add a VPN connection before you can connect. Select Add connection from the Connection popup menu.
2. You will then be presented with the screen to begin your first connection to the Dell SonicWALL firewall or appliance:
– Name: Enter a descriptive name for the connection.
– Server: Enter the URL or IP address of the server.
3. Select Next. Mobile Connect will then attempt to contact the Dell SonicWALL appliance. If the attempt fails, a warning message is displayed asking if you want to save the connection. Verify that the server address or URL is spelled correctly, and then tap Save.
4. If Mobile Connect successfully contacts the server, you will be prompted to optionally enter your Username and Password. Enter your Username and Password, and then scroll down to the Domain field.
The Domain field is auto-populated with the default domain from the server. To select a different domain, tap Domain to display a drop-down menu of the available options, select the correct domain.
5. Click Save to create the new connection.
E-Class SRA Appliances Connection
1. The first time you launch Mobile Connect, you must add a VPN connection before you can connect. Select Add Connection from the Connection popup menu.
2. You will then be presented with the screen to begin your first connection to the Dell SonicWALL firewall or SRA appliance:
– Name: Enter a descriptive name for the connection.
– Server: Enter the URL or IP address of the server.
3. Select Next. Mobile Connect will then attempt to contact the Dell SonicWALL appliance. If the attempt fails, a warning message will display, asking if you want to save the connection. Verify that the server address or URL is spelled correctly, and then tap Save.
If Mobile Connect successfully contacts the server, the connection is saved automatically.
Connect to Mobile Connect Server
After you save a new connection, it is selected under the Connection tab.
To establish a Mobile Connect session, perform the following tasks:
1. Select the connection that you want to initiate from the Connection list. Click the Connect button.
2. Enter your username and password if prompted (depending on whether the appliance you are connecting to allows for saving usernames and passwords), and tap Login.
3. When the connection is successfully established, the Status row changes to Connected and the Connect button changes to Disconnect.
4. Once connected, you can access your Intranet network with other apps. The Mobile Connect menu bar icon will appear in the connected state:
5. Press the Home button on your iPhone, iPod touch, or iPad to display its home screen. You can now navigate to other apps to access your Intranet network. The status bar at the top of the iPhone, iPod touch or iPad displays a VPN icon to indicate that the Mobile Connect session is still connected.
The native Mac system VPN Status in the menu bar can also be displayed from the System Preferences app under Network. The VPN Status icon changes to the connected state, and the connection time can also be shown.
If the VPN connection is interrupted, the menu bar icons change to indicate that you are no longer connected or that Mobile Connect is reconnecting the VPN, and you will no longer be able to access the Intranet network. This can happen if your device’s connection transitions from one Wi-Fi network to another Wi-Fi network or to another network type.
If the VPN disconnects, return to Mobile Connect to reestablish the connection. Optionally, you can configure the Automatic Reconnect option in the Mobile Connect app Preferences to have Mobile Connect automatically attempt to reestablish interrupted connections.
Configure Mobile Connect Settings,
Configure Mobile Connect Settings
SonicWALL Mobile Connect provides several preferences for connection and logging options. The Settings tab also provides Support information, which includes a User Guide and device, connection, and server information.
The following options are controlled from the Preferences screen:
• Connect on Launch - Sets Mobile Connect to automatically initiate a connection to the last-used profile when the app is launched.
• Automatic Reconnect - Sets Mobile Connect to automatically attempt to reconnect if the connection is lost. The SSL VPN connection can be disrupted when your device’s connection transitions to a different network, such as another Wi-Fi network. This setting lets applications rely on a sustained VPN connection. There is no limit on the amount of time it takes to reconnect.
• URL Control - Allows other mobile applications to pass action requests using special URLs to Mobile Connect. These action requests can create VPN connection entries and connect or disconnect VPN connections. For example, another application can launch Mobile Connect, access internal resources as needed, and then disconnect by using the mobileconnect:// or sonicwallmobileconnect:// URL scheme. Some common examples of URL Control are:
Add profile: mobileconnect://addprofile[/]?name=ConnectionName&server=ServerAddress[&Parameter1=Value&Parameter2=Value...]
Connect: mobileconnect://connect[/]?[name=ConnectionName|server=ServerAddress][&Parameter1=Value&Parameter2=Value...]
Disconnect: mobileconnect://disconnect[/]
See the SonicWALL Mobile Connect User Guide for full URL Control parameter details.
Debug Logging - Enables full debug log messages of Mobile Connect activity. Leave this section disabled unless instructed to enable it by Dell SonicWALL Support staff.
E-Class SRA Settings
Two additional options can be modified for connections to Dell SonicWALL E-Class SRA appliances. To view these options, click the Edit icon next to the selected connection on the Connection tab. The Edit Connection screen displays.
The following options can be configured:
• Remember Credentials - Enables saving of user authentication credentials for the VPN connection. This is disabled by default and can be controlled by the E-Series SRA server setting.
• Forget this Login Group - Mobile Connect remembers the Login Group that you specified when configuring the connection. To change to a different Login Group, tap Forget Selections. The next time you connect to the server, you will be prompted to select a new Login Group.
Note If these options are not displayed, then you are connecting to either a Dell SonicWALL firewall or SRA appliance.
The Help menu provides the following support information:
• User Guide – Displays the SonicWALL Mobile Connect User Guide in the default web browser application (for example, Safari).
• Email Logs – Creates an email to send the Mobile Connect log files to Dell SonicWALL Support staff. The email will be opened in the default mail application (for example, Mail).
• Export Logs – Opens a Finder window to a temporary folder containing a copy of the Mobile Connect log files.
• Clear Logs – Deletes all log files that have been saved on the device
|
|
|
|
|
|
|
|
Client certificate support is only available for connections to Dell SonicWALL E-Class SRA appliances.
Configuring a Connection to Dell SonicWALL E-Class SRA Appliances
If a client certificate is required during authentication, the user will be automatically prompted to select a client certificate present in the user’s keychain in OS X.
Select the client certificate from the list of certificates and then click Next.
By default a VPN configuration prompts the user to select the client certificate during authentication. If a user successfully authenticates with a client certificate, the VPN configuration profile will be automatically updated to use the client certificate for each subsequent connection attempt. To reset the client certificate selection, edit the connection and tap the Forget Selections button.
Note If no client certificates are installed, an error message is shown indicating that no matching client certificates are present on your device. The Keychain Access app (in Applications/Utilities) can be used to view client certificates. Click the My Certificates category to easily see available client certificates.
Connect on Demand is only available for connections to Dell SonicWALL E-Class SRA and SMB SRA appliances.
The Connect on Demand feature provided by Mobile Connect provides the ability to automatically establish a VPN connection when you attempt to access a domain on the private network. This provides a seamless VPN connectivity experience without the need to manually launch Mobile Connect.
The enable Connect on Demand for your E-Series SRA connection, open the Network Settings in System Preferences and select the VPN connection from the list or network connections and make sure that the Connect on demand checkbox is enabled.
A VPN configuration must meet the following requirements to support Connect on Demand:
Dell SonicWALL E-Class SRA Appliance Requirements
• The VPN tunnel must not be configured for Redirect-All mode.
• The realm must be configured to use client certificates for authentication. Chained authentication (where a second authentication server is used) does not support Connect on Demand.
• The valid client certificate for the realm must be present.
• The user must successfully connect to the appliance at least once.