Share via

Deploy new Azure VPN profile (.xml) through intune.

kvidhul-3447 20 Reputation points
2024-08-15T20:04:07.2966667+00:00

Hi,

i have to update user devices with new Azure VPN profile through intune.

I have existing profile already deployed and now i want to replace this with new one.

./User/Vendor/MSFT/VPNv2/<profile>/ProfileXML

i am getting error 0x87d101f4.

tried creating new profile with new name and new configuration (.xml) but still i am getting error.

Also excluded the test users from original vpn policy. Still having the error.

Azure VPN Gateway
Azure VPN Gateway
An Azure service that enables the connection of on-premises networks to Azure through site-to-site virtual private networks.
1,527 questions
Microsoft Intune Configuration
Microsoft Intune Configuration
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Configuration: The process of arranging or setting up computer systems, hardware, or software.
1,893 questions
Microsoft Intune
Microsoft Intune
A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.
5,048 questions
Accepted answer
  1. Konstantinos Passadis 19,166 Reputation points MVP
    2024-08-15T20:10:53.92+00:00

    Hello @kvidhul-3447

    Please try these steps

    Create a Policy-Config to remove current profileThen try to add the new one

    Taken from the link

    Follow the steps below to replace with your tenant info

    Line 5: Modify the <TrustedNetworkDetection> setting to the DNS suffix, your DHCP server is sending out to your clients. This will be used to determine if a device is connected to the internal network or external. For example: contoso.local. Line 9: Modify the <ServerUrlList> setting. Line 18: Modify the <issuer> setting https://sts.windows.net/TENANTID/. Line 19: Modify the <tenant> setting https://login.microsoftonline.com/TENANTID/. Line 31: Modify the <name> setting. This is the VNET name. Line 41: Modify the <fqdn> setting. This value can be found in the AzureVPN/azurevpnconfig.xml file which is in the downloaded from Azure. Line 46: Modify the <hash> setting. This value can be found in the AzureVPN/azurevpnconfig.xml file which is in the downloaded from Azure. Line 50: Modify the <serversecret> setting. This value can be found in the AzureVPN/azurevpnconfig.xml file which is in the downloaded from Azure.

     

    Save it as new XML file in order to import to OMA URI Setting.

     

     

    In order to override your existing file:

     

    OMA-URI Setting should be like below:

     

    Name: Give it a name

    Description: Give it description

    OMA-URI: ./User/Vendor/MSFT/VPNv2/NAME OF YOUR EXISTING PROFILE/ProfileXML

    Data Type: String (XML File)

    I hope this helps!

    Kindly mark the answer as Accepted and Upvote in case it helped!

    Regards

0 additional answers

Sort by: Most helpful
Most helpful Newest Oldest

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.