Reply
New Member
Posts: 23
Registered: ‎12-26-2013
Kudos: 7

iOS L2TP VPN Profile Creator

I made this tool to make it easier to deploy an iOS VPN profile to my devices without the need for mobile device management solution.  Once the file is generated you can email it to yourself using gmail and then open it.  It will then import into your phone or ipad's profiles. 

 

It has three connections that get created.

(SiteName): Always - with this you will always connect automatically to your VPN on LTE and Wifi

(SiteName): Manual - with this you will be able to manually connect to your VPN

(SiteName): WiFi - with this you will automatically connect to VPN when on an untrusted WiFi network based on the SSID's you add to the Wireless Networks - No VPN section in the tool.

 

IOSVPNCreator.JPG

Just fill in the information in the tool, navigate to a folder in Save Path and click Create Config.

Site Name: I would type something short in this field with no spaces as this is used when it creates the connection name in your VPN settings.

Site Address: This is where you would type in either an IP address or a hostname to your router after creating the L2TP connection.

User: The user name that you created for the connection in the Radius settings.

Password: The password for the user above.

Shared Secret: The secret you defined for you L2TP connections.

Wireless Networks No VPN:  This is where you would define trusted SSID's to not connect to VPN.  These are case sensitive.

 

The L2TP setup I used is below.

https://help.ubnt.com/hc/en-us/articles/115005445768-UniFi-USG-VPN-L2TP-Remote-Access-VPN-with-USG-a...

Attachment
Established Member
Posts: 1,934
Registered: ‎02-17-2015
Kudos: 566
Solutions: 48

Re: iOS L2TP VPN Profile Creator

[ Edited ]

@BuddyEdwards => sadly I'm using MacOS and Unix system, but this is a great idea already. I'm using the Apple COnfigurator to generate them, including the WPA2 enterprises (same username/password) and emails/services too (easy, same username and password for everything !)

It was one of the feature request actually, to provide iOS profile, but as Google android, and others OS don't have solution except by installating a MDM with a software to manage the configuration, it's hard to justify the dev for UBNT, as it's not really "inline with the low budget hardware solution" (You don't find iOS everywhere, but you can find android)

 

 Note : the iOS profile you got, work on MacOS too, you can use it too !

New Member
Posts: 23
Registered: ‎03-16-2017
Kudos: 3

Re: iOS L2TP VPN Profile Creator

[ Edited ]

This looks like a very useful tool, thank you.

 

When I load the app it doesn't give me the option for a save path on the configuration.  I have tried running it as an administrator.  Any ideas?

 

 EDIT:  Nevermind, I downloaded again on another computer and it runs correctly.   I have no I dea why id didn't behave on my laptop.  Probably because it is a Micro$soft SurfaceBook with the stupid screen scaling it employs to make a 15" 3000X2000 display readable.  

Capture.PNG
New Member
Posts: 12
Registered: ‎02-26-2017
Kudos: 2

Re: iOS L2TP VPN Profile Creator

Do you have the source code to this available on GitHub or otherwise? I was thinking of creating a web-based version of this.

New Member
Posts: 23
Registered: ‎12-26-2013
Kudos: 7

Re: iOS L2TP VPN Profile Creator

Its a display scaling issue with higher res displays, multi displays etc.. It works better if you are using a standard resolution with no screen scaling.

New Member
Posts: 23
Registered: ‎03-16-2017
Kudos: 3

Re: iOS L2TP VPN Profile Creator

Thanks, I figured out and edited my post above at about the same time you were replying.  

New Member
Posts: 23
Registered: ‎12-26-2013
Kudos: 7

Re: iOS L2TP VPN Profile Creator

This is just a compiled powershell script that takes a .mobileconfig and fills it out and adds the sections it needs based on your input into variables that get populated when it finally saves the file.  I've never had a reason to put it up on GItHub since its a single purpose script that I made for myself that I thought other Unifi users might be able to take advanatage of.  That said you should be able to and exported .mobileconfig file and duplicate the logic in a web page to generate a text file output with the correct settings.

Reply