How it Works
SonicWALL
Loading...
232-002603-00
User Manual
49 pgs612.31 Kb0
Table of contents
Loading...

SonicWALL 232-002603-00 User Manual

SonicWALL Mobile Connect
Mobile Connect for Android 3.1
User Guide
Notes, Cautions, and Warnings
NOTE: A NOTE indicates important information that helps you make better use of your system.
CAUTION: A CAUTION indicates potential damage to hardware or loss of data if instructions are
not followed.
WARNING: A WARNING indicates a potential for property damage, personal injury, or death.
© 2014 SonicWALL LLC. Trademarks: SonicWALL™, Aventail™, SonicWALL Mobile Connect™, and all other
SonicWALL product and service names and slogans are trademarks of SonicWALL LLC., a wholly owned subsidiary of Dell.
2014 – 07 P/N 232-002603-00 Rev. A
Table of Contents
How Mobile Connect Works . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4
Prerequisites. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4
Android Product Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
Dell SonicWALL Appliance Support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
What’s New in This Release? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5
Required Network Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
Installing Mobile Connect . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
Using Mobile Connect. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
Creating a Connection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
Connecting to the Mobile Connect Server . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
Configuring Mobile Connect Settings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
URL Control Syntax and Parameters. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
Callback URL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
Bookmarks . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Files Bookmarks. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Application Access Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
Configuring Client Certificates. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
Configuring Client Certificates with E-Class SRA Appliances . . . . . . . . . . . . . . . . . . . . . . . . . 34
Configuring Client Certificates with SMB SRA Appliances. . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Monitoring Mobile Connect. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
Mobile Connect Widget. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
Troubleshooting Mobile Connect . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
Failed End Point Control Check. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
General Troubleshooting . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
Support Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Contact Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
End User Licensing Agreement . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Table of Contents | 3
Using Mobile Connect for Android
SonicWALL Mobile Connect for AndroidTM is an app that enables Android devices to establish secure, mobile connections to private networks protected by Dell SonicWALL security appliances.

How Mobile Connect Works

Modern business practices increasingly require that users be able to access any network resource (files, internal websites, etc.), anytime, anywhere. At the same time, ensuring the security of these resources is a constant struggle. While most users are aware that they must take care to protect computers from network security risks, this security awareness does not always extend to mobile devices. And yet, mobile devices are increasingly subject to security attacks. Furthermore, mobile devices often use insecure, untrusted, public Wi-Fi hotspots to connect to the Internet. It is therefore a challenge to provide secure, mobile access while still guarding against the inherent security risks of using mobile devices.
The SonicWALL Mobile Connect app for Android devices provides secure, mobile access to sensitive network resources. Mobile Connect establishes a Secure Socket Layer Virtual Private Network (SSL VPN) connection to private networks that are protected by Dell SonicWALL security appliances. All traffic to and from the private network is securely transmitted over the SSL VPN tunnel.
To get started with SonicWALL Mobile Connect:
1. Install SonicWALL Mobile Connect from the Google Play Store or the Amazon Appstore.
2. Enter connection information (server name, username, password, etc.).
3. Initiate a connection to the network.
4. Mobile Connect establishes a SSL VPN tunnel to the Dell SonicWALL security appliance.
5. You can now access resources on the private network. All traffic to and from the private
network is securely transmitted over the SSL VPN tunnel.

Prerequisites

The following sections describe prerequisites for SonicWALL Mobile Connect:
Android Product Support on page 5
Dell SonicWALL Appliance Support on page 5
Required Network Information on page 6
How Mobile Connect Works | 4

Android Product Support

SonicWALL Mobile Connect requires the Android 4.0 or newer platform and a cellular or Wi-Fi connection.
SonicWALL Mobile Connect has been verified to run on the following Android devices running the official Android 4.0 platform:
Dell Venue 7 and 8 ASUS Nexus 7
Samsung Nexus 10 ASUS FonePad
Samsung Galaxy S2 LG Nexus 4
Samsung Galaxy S3 LG Nexus 5
Samsung Galaxy S4 Motorola Droid Razr Tablet
Samsung Galaxy S5
Samsung Galaxy Tab Amazon Kindle Fire HDX
Note
Although Mobile Connect is designed to work with all Android devices running the 4.0 or newer platform, only the above platforms have been tested and verified to run Mobile Connect. Custom ROMs are not officially supported.

Dell SonicWALL Appliance Support

SonicWALL Mobile Connect is a free app, but requires a concurrent user license on one of the following Dell SonicWALL solutions in order to function properly:
Dell SonicWALL firewall appliances including the TZ, NSA, E-Class NSA running SonicOS
5.8.1.0 or higher
Dell SonicWALL SRA appliances running 5.5 or higher
Dell SonicWALL Aventail E-Class SRA appliances running 10.5.4 or higher

What’s New in This Release?

Application Access Control – Support for the Application Access Control feature in Dell
Secure Mobile Access 11.0 on E-Class SRA appliances is added in Mobile Connect 3.1. Application Access Control allows remote access administrators to control exactly which resources on the corporate network each application (app) can access. Meanwhile, the device owner can still use their personal Android device for their own activities such as personal email, financial data, pictures, music, accessing third party web sites, etc.
For more information, see Application Access Control on page 29. Personal Device Authorization – Mobile Connect 3.1 supports the Personal Device
Authorization feature in Dell Secure Mobile Access 11.0 on E-Class SRA appliances. Administrators can configure the E-Class SRA appliance so that users who log in with personal
devices are allowed access to the network, provided that the user authorizes the device. Personal Device Authorization is configured independently of Application Access Control and
the two features are not required to be simultaneously enabled. During the authorization process of the personal device:
An authorization record is created that associates the device with the user.
5 | SonicWALL Mobile Connect for Android User Guide
The user must agree to comply with corporate policies regarding access of company data
and resources from their personal device.
The company discloses any privacy ramifications to the user, such as that data from their
personal device may be sent to the corporation.

Required Network Information

In order to use SonicWALL Mobile Connect, you will need the following information from your network administrator or IT support:
Server name or address – This is either the IP address or URL of the SSL VPN server that
you will connect to.
Username and password – Typically, you will be required to enter your username and
password, although some connections may not require this.
Domain name – The domain name of the SSL VPN server. Mobile Connect may be able to
automatically determine this when it first contacts the server, or there may be multiple domains that can be selected.

Installing Mobile Connect

SonicWALL Mobile Connect is installed through the Google Play S tore or the Amazon App store.
1. On your Android device, tap the Google Play icon:
Or, type the following in the browser: Google Play Store:
https://play.google.com/store/apps/details?id=com.sonicwall.mobileconnect
Amazon Appstore:
https://www.amazon.com/gp/mas/dl/android?p=com.sonicwall.mobileconnect
2. Go to the Search tab, type SonicWALL Mobile Connect, and tap Search.
3. In the search results, select SonicWALL Mobile Connect.
4. Click the Install button under SonicWALL Mobile Connect. The app will install on your
device. When installation is complete, the SonicWALL Mobile Connect icon will appear on your device.
If you encounter an error when attempting to download SonicWALL Mobile Connect, please go to the appropriate site for help:
Google Play Store Help - Follow troubleshooting procedures and instructions on how to report the issue using your Google account: http://support.google.com/googleplay/?hl=en
Installing Mobile Connect | 6
Amazon Appstore Help - Follow troubleshooting procedures and instructions on how to report the issue using your Google account:
http://www.amazon.com/gp/help/customer/display.html?nodeid=201111910

Using Mobile Connect

The following sections describe how to use Mobile Connect:
Creating a Connection on page 7
Connecting to the Mobile Connect Server on page 11
Configuring Mobile Connect Settings on page 16

Creating a Connection

The process of creating a Mobile Connect connection is slightly different depending on which type of Dell SonicWALL appliance you are connecting to. The following sections describe how to create a connection:
Creating a Connection to Dell SonicWALL Firewall and SRA Appliances on page 7
Creating a Connection to Dell SonicWALL E-Class SRA Appliances on page 9

Creating a Connection to Dell SonicWALL Firewall and SRA Appliances

1. Launch SonicWALL Mobile Connect. You will be presented with the screen to begin your
first connection. Tap Add connection.
Name: Enter a descriptive name for the connection.
Server: Enter the URL or IP address of the server.
2. Tap Next. Mobile Connect will then attempt to contact the Dell SonicWALL appliance.
7 | SonicWALL Mobile Connect for Android User Guide
If the attempt fails, a warning message will display, asking if you want to save the connection. Verify that the server address or URL is spelled correctly, and then tap Save.
3. If Mobile Connect successfully contacts the server, you will be prompted to enter your
Username and Password (unless the server does not require this information).
Note
If the screenshots above do not match what is displayed on your device, you are connecting to a Dell SonicWALL E-Class SRA or Dell Secure Mobile Access appliance. Proceed to
Creating a Connection to Dell SonicWALL E-Class SRA Appliances on page 9.
Using Mobile Connect | 8
4. The Domain field is auto-populated with the default domain from the server. To select a
different domain, tap Domain to display a drop-down menu of the available options and tap Save.

Creating a Connection to Dell SonicWALL E-Class SRA Appliances

In addition to full IPv4 support, VPN connections can connect to SRA EX appliances via IPv6 and can access IPv6 resources over the VPN. This feature requires 10.7.x E-Class SRA firmware or higher.
9 | SonicWALL Mobile Connect for Android User Guide
To connect to an E-Class SRA server:
1. Launch Mobile Connect. You will be presented with the screen to begin your first
connection. Tap Add connection.
Name: Enter a descriptive name for the connection.
Server: Enter the URL or IP address of the server.
2. Tap Next. Mobile Connect will then attempt to contact the Dell SonicW ALL appliance. If the
attempt fails, a warning message will display, asking if you want to save the connection.
3. Before tapping Save, verify that the server address or URL is spelled correctly.
If Mobile Connect successfully contacts the server, the connection will be automatically saved.
Using Mobile Connect | 10

Connecting to the Mobile Connect Server

After you save a new connection, the list of all configured connections displays.
To establish a Mobile Connect session, perform the following tasks:
1. Tap the connection in the list that you want to initiate. The Connection Status page
displays. Tap the VPN ON/OFF switch.
11 | SonicWALL Mobile Connect for Android User Guide
2. The first time you initiate a connection, a warning message displays. Tap the I trust this
application checkbox, and then tap OK.
3. For E-Class SRA connections only: If Mobile Connect successfully contacts the server,
you will be prompted to select which Login Group on the appliance you want to connect to. If you do not know which Login Group to connect to, contact your network administrator.
Note
If the screenshots above do not match what is displayed on your device, you are connecting to a Dell SonicWALL firewall or SRA appliance. Proceed to Creating a Connection to Dell
SonicWALL Firewall and SRA Appliances on page 7, step 3.
Using Mobile Connect | 12
4. For E-Class SRA connections only: If the Login Group you connect to is not listed, select
Other... to manually type in the group name.
5. For E-Class SRA connections only: Enter your username and password if prompted
(depending on whether the Dell SonicWALL appliance you are connecting to allows for saving usernames and passwords).
13 | SonicWALL Mobile Connect for Android User Guide
6. If this is the first time you have connected to an E-Class SRA server with Personal Device
Authorization enabled, you are prompted to register your device. A similar prompt appears if the terms and conditions have changed. To continue, tap Accept to agree to the terms and conditions.
7. If connecting to an E-Class SRA server with Application Access Control configured, a
notification about Data Privacy with a list of the applications under control is displayed. Optionally, uncheck any of the displayed apps if you are only using them for personal use and you do not want their traffic sent to the corporate network. Then tap Accept to accept the terms and continue.
Using Mobile Connect | 14
When the connection is successfully established, the Status changes to Connected and the VPN switch remains in the ON position.
Any bookmarks defined for the portal are displayed below the S tatus line, and allow you to navigate directly to the bookmark’s destination. Bookmarks will only appear after a VPN connection is established if the server is running firmware that supports Mobile Connect bookmarks and bookmarks have been defined for that user.
If Application Access Control is configured on the server (E-Class SRA only), the list of Bookmarks is replaced by a list of apps that are allowed to access the corporate network.
15 | SonicWALL Mobile Connect for Android User Guide
Loading...
+ 34 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use