Using Per App VPN Routing
Learn how to implement Per App VPN Routing in any iOS app in minutes – no code or coding required. Secure mobile data in transit fast and easy.
Per App VPN Routing is a feature supplied by Apple’s iOS to tunnel connections through a VPN.
The only way to configure Per-App VPN is by enrolling the device in a Mobile Device Management (MDM) system and linking apps that are managed by the MDM system with a VPN configuration. The app’s traffic will then be handled by Apple’s VPN component.
Using Per-App VPN Routing
To enable this feature in your mobile app using Appdome:
- Go to the Build Tab
- Select the Access menu
- Turn on Per-App VPN Routing
- You will see a warning message that other features are being disabled. Click Proceed.
Per App VPN Routing Compatibility
To allow this feature to handle the traffic, the following Appdome features will be turned off automatically, or an error will be displayed
Even if you tunnel an app’s entire network connectivity, you are still able to secure your app by using complementary Appdome features such as:
- Enforce Strong RSA Signature
- Enforce Strong ECC Signature
- Enforce SHA256 Digest
- Enforce Certificate Roles
- Validating Basic Constraints for CA certificates
- Static Client Pinning and Certificate Pinning
- Authentication using NTLM or: Basic authentication, Digest, Ngotiate or an HTML form.
How Do I Learn More?
You can read about Per-App VPN in apple’s developer website.
Read more about Enterprise Access and Convectivity.
Kai Kenan
- Enforce Organization Domain Verification On Appdome Teams
- Adding Team Members with Entitlements and Roles from CSV
- Enforce Org Naming Policy – Fusion Set Templates
- Collaborating safely using Team Leaders and Members
- Sharing Fused Builds with Other Teams
- Using Entitlements to Collaborate on Mobile Integration Projects
- Collaborate using Appdome for Teams
- Automatically Distribute Enterprise Apps to Workspace ONE
- How to Finish Mobile Integration Projects (After Building your App)
- Autodeploy Mobile Apps using Appdome
- Autodeploy Apps to Private Appstore
- Automatically Distribute Enterprise Apps to Intune App Store
- Autodeploy apps to Maas360 Appstore
- Automatically Distribute Apps to Google Play Store
- Automatically Distribute Apps to Apple App Store
- Using Appdome-DEV API for Postman Collection
- What is Appdome-DEV
- Auto-DEV Private Signing Script for Android Apps
- Auto-Dev Private Signing iOS Apps
- Integrating Your App with Appdome DEV-Events and OneLogin MFA Service
- Using Appdome-DEV to Automate Mobile App Integration
- Automate Single Tasks using the Appdome REST API
- Extracting a SHA-1 or SHA-256 fingerprint to sign apps on Google Play
- Enforce Org Naming Policy – Fusion Set Templates
- Sharing Fusion Sets with Other Teams
- Locking your Fusion set to prevent changes
- Appdome-GO – Enabling Mobile DevSecOps
- No-Code Mobile Integration Workflow Summary | Appdome
- Sharing Templates Using Appdome-GO
- Using Mobile Integration Templates with Apps
- Analytics and Logs Available On the Appdome Platform
- Auto-DEV Private Signing Script for Android Apps
- Auto-Dev Private Signing iOS Apps
- How to Finish Mobile Integration Projects (After Building your App)
- Using Appdome to Validate App Signing
- How to Sign Built Apps On Appdome
- Signing iOS Apps on Appdome
- Signing Android Apps on Appdome
- Creating an iOS Distribution Certificate and P12 File for Signing iOS Apps
- How to Sign iOS Apps Locally
- Jabber Requirements for Third Party Integration
- Enabling Apple WatchKit Support During Signing
- How To Sign Android Apps Locally
- Extracting a SHA-1 or SHA-256 fingerprint to sign apps on Google Play
- Validating SSO configuration in Mobile Apps
- De-obfuscating iOS crash reports
- Set Up a Simple Webpage to Deploy iOS Apps
- Extracting Root CA certificates from Websites
- How to Obtain iOS Application Extended Logs for Troubleshooting
- Troubleshooting Android apps using ADB
- How to Download Mobile Apps From Appdome
- How to Sideload iOS Apps using iMazing on MacOS
- Testing Fused Apps with An Android ARM Emulator
- Sideload Android App using ADB
- How Can I Obtain My iOS Device’s UDID?
- Troubleshooting Tips – Common Reasons for App to Exit
- How to Obtain iOS Crash Logs for Troubleshooting
- How to Obtain Build ID for Troubleshooting
- Appdome Diagnostics Gets You Priority Support
- Network Access and Authentication Troubleshooting App
- Validating SSO configuration in Mobile Apps
- Using Browser Android Troubleshooting App
- Troubleshoot TLS issues
- De-obfuscating iOS crash reports
- Register iOS Device to Development Provisioning Profile
- Extracting Extended App Logs from Your Device
- Common Play Store Deployment Error Codes
- Custom App Compromise Notification & Troubleshooting When an App Exits
- Modifying Apps with Frameworks that Don’t Allow Bundle ID Changes
- Data at Rest Encryption is “ON” but There are Unencrypted Files Inside My App’s Sandbox
- Testing Fused Apps with An Android ARM Emulator
- Using Appdome-DEV API for Postman Collection
- Validating F5 BIG-IP Anti-Bot Configuration
- Appdome No-code Mobile Integration Workflow
- Appdome Cloud Infrastructure Overview – Security & Disaster Recovery
- How to Upload Mobile Apps to Appdome
- What is Appdome’s My Apps?
- How to Build Services to Apps on Appdome – End to End
- What Is the Appdome Platform?
- Does Appdome Have An On-Premise iPaaS Service?
- What is Appdome?
- How to Finish Mobile Integration Projects (After Building your App)
- Signing Android Apps on Appdome
- De-obfuscating iOS crash reports
- Add Anti-Debugging to Any Mobile App in Seconds
- Appdome Anti-reversing protection for iOS/Android apps
- Verifying the Integrity of a Mobile Application
- No-code Mobile Anti-Tampering
- How Appdome Can Encrypt Specific Strings And Secrets in Your iOS App
- Appdome ONEShield Mobile App Hardening
- How to use “Require Security Services” to validate if Lookout Mobile is active
- Route Your App AVPlayer Media and Video Streaming via the EMM Tunneling
- Using Per App VPN Routing
- Add Ability to Prohibit Location to Any Mobile App Fast
- Add Ability to Prohibit Microphone to Any Mobile App Fast
- Add Ability to Prohibit Camera to Mobile Apps
- Add Ability to Use In-App Messages Only to Mobile Apps
- Add Ability to Use In-App Calls Only to Mobile Apps
- Add Ability to Prohibit Local Calendar to Any Mobile App Fast
- Add Ability to Prohibit Local Contacts to Any Mobile App Fast
- Mobile App Permissions control without coding
- Establish an EMM Authenticated Tunnel in Mobile Apps
- Webview Consolidation for EMM Tunneling
- How to Extend EMM Copy-Paste Prevention to Trusted Mobile Apps
- Use Secure Email in Mobile Apps
- Adaptive App Routing – Developers control app routing over VPN
- Add Dynamic Container Management to EMM SDKs
- Customize & Extend MAM/EMM SDK Implementations
- No-Code Integration of Microsoft Intune SDK Into Mobile Apps
- AppConfig in Mobile Apps | All EMMs
- Custom EMM policies in AppConfig
- Add BlackBerry Dynamics Authenticated Tunnel to Mobile Apps
- Adaptive App Routing – Developers control app routing over VPN
- Add BlackBerry Dynamics SDK to any mobile app without coding
- Deploy Mobile Apps Integrated with the BlackBerry SDK to BlackBerry Control (Good Control)
- ONE-AppConfig Integration Setup with BlackBerry
- BlackBerry Dynamics Entitlement ID and Version Best Practices
- Integrating Mattermost with BlackBerry Dynamics – no-code
- Deploy Mobile Apps integrated with BlackBerry
- Enabling Data Leakage Prevention with BlackBerry Dynamics
- How to Add Fused Apps to BlackBerry Launcher
- No-Code Integration of BlackBerry Dynamics SDK and BlackBerry Launcher Into Mobile Apps
- Custom Policies for Microsoft Intune in mobile apps
- No-Code Integration of Microsoft’s Secure Browser, Email and Document Sharing Into Mobile Apps
- Adaptive App Routing – Developers control app routing over VPN
- SCEP Certificates Mobile Authentication (Intune)
- Automatically Distribute Enterprise Apps to Intune App Store
- Deploy Mobile Apps Integrated with Intune
- No-Code Integration of Microsoft Intune SDK Into Mobile Apps
- Add Microsoft Intune and MicroVPN into Mobile Apps
- Setting Up VMWare Workspace ONE (AirWatch) for Enterprise Apps
- Adaptive App Routing – Developers control app routing over VPN
- No-Code Integration of VMware Workspace ONE (AirWatch) SDK Into Mobile Apps
- Deploy Mobile Apps Integrated with VMware Workspace ONE
- ONE-AppConfig Integration Setup with VMWare Workspace ONE (AirWatch)
- Add Ability to Prohibit Location to Any Mobile App Fast
- Add Ability to Prohibit Microphone to Any Mobile App Fast
- Add Ability to Prohibit Camera to Mobile Apps
- Add Ability to Use In-App Messages Only to Mobile Apps
- Add Ability to Use In-App Calls Only to Mobile Apps
- Add Ability to Prohibit Local Calendar to Any Mobile App Fast
- Add Ability to Prohibit Local Contacts to Any Mobile App Fast
- Mobile App Permissions control without coding
- Secure Document Sharing between Trusted Mobile Apps
- No-Code Integration of Microsoft’s Secure Browser, Email and Document Sharing Into Mobile Apps
- Use Secure Email in Mobile Apps
- Use Secure Browser in Mobile Apps
- Adaptive App Routing – Developers control app routing over VPN
- No-Code Integration of IBM MaaS360 SDK in Mobile Apps
- Improve Enterprise Mobility Experiences with BoostEMM
- No-Code Integration of Microsoft Intune SDK Into Mobile Apps
- Mobile App Screenshot Prevention in EMMs
- Validating SSO configuration in Mobile Apps
- Building Custom Mobile SSO Workflows (Android/iOS)
- Mobile SSO with ADFS in any iOS or Android app
- Conditional Cookies
- Add SSO to Any Mobile App Without Coding
- Enabling Mobile Apps to Share Authentication State
- Adding Multiple Authentication Profiles to a Single App
- Blocking Malicious Redirect Requests During SSO Authentication
- Propagating SSO Cookies To All Domains
- Adding Modern Authentication (OAuth2)Â to Mobile Apps
- How to use “Require Security Services” to validate if Lookout Mobile is active
- Implementing Secure Download with Appdome Fast
- Protect Floating Windows and Dynamic Content in Android Apps
- Mobile App Jailbreak and Root Detection Without Coding
- Using FIPS 140-2 Cryptographic Modules in a Mobile App
- Jailbreak and Root Prevention for my app
- How To Prevent App Screen Sharing in Android and iOS
- Appdome App Integrity and Structure Scan
- Appdome Mobile Security Suite
- Configuring Appdome Security Alerts for Kotlin Apps
- Configuring Appdome Security Alerts for React Native Apps
- Configuring Appdome Security Alerts for Swift Apps
- Configuring Appdome Security Alerts for Cordova Apps
- Configuring Appdome Security Alerts for Native Apps
- Configuring Appdome Security Alerts for Xamarin Apps
- Integrating Your App with Appdome DEV-Events and OneLogin MFA Service
- How to implement Appdome DEV-Events
- Mobile App Screenshot Prevention in EMMs
- Store and encrypt secrets in Protected Memory
- Implementing Smart Offline Handoff to your app on Appdome fast
- Smart Media Sharing – Secure Offline Data Access
- Mobile TOTALData Encryption Exceptions and Comments
- How to Extend EMM Copy-Paste Prevention to Trusted Mobile Apps
- Protect Mobile Privacy with “Blur Application Screen”
- How To Prevent App Screen Sharing in Android and iOS
- How to add Copy/Paste Prevention to a mobile app
- TLS/SSL Certificate Signature Hardening
- How to use Trusted Session to Prevent Man-In-The-Middle attacks
- Prohibit Stale Sessions in mobile apps
- No code Malicious Proxy Prevention for iOS and Android apps
- Trust World Wide Public CAs
- Add a Unique Shared Secret To Any Mobile App Client Requests
- Appdome Certificate Validation and Certificate Pinning
- Using Per App VPN Routing
- Enforce Certificate Roles
- Enforce TLS Version
- Enforce TLS Cipher Suites in apps without coding
- MitM Attack Protection using Appdome Trusted Session
- Adding URL Whitelisting to a Mobile App
- Prevent MiTM Attacks and Malicious Proxies
- How to Prevent MiTM Attacks on Mobile Apps
- Encrypting Sensitive strings.xml Values In Android Apps
- Code Packing Android Apps – Appdome APPCode Packer
- Store and encrypt secrets in Protected Memory
- Building iOS Secure Enclave Keys Into Your apps
- Encrypting In-App Preferences in Mobile Apps
- Use an External Seed for Data at Rest Encryption in Mobile Apps
- Using FIPS 140-2 Cryptographic Modules in a Mobile App
- Encrypt mobile data in Android and iOS Apps
- Encrypting Strings and Resources in Mobile Apps
- Prevent Mobile Apps From Running on Banned Devices
- Prevent Keylogging in Mobile Apps
- No-Code Mobile App Obfuscation in minutes