No VPN Gateway for Wi-Fi

10/3/2008

For this topology, the managed Windows Mobile device connects directly to the Mobile Device Manager (MDM) Device Management Server without the use of the MDM Gateway Server. You choose this scenario if you plan to have managed devices used only in your corporate network.

Topology benefits include the following:

• A more simple topology, less implementation required.
• Less management needed for mobile infrastructure.

The following illustration shows a managed device communicating with the MDM Device Management Server without the use of the MDM Gateway Server.

The numbers in the above illustration highlight the following:

1. On the MDM Device Management Server, or any other server with MDM Administrator Tools installed, you run the following MDM Shell cmdlet to disable the Mobile VPN client on all devices:

   Set-EnrollmentConfig -ActivateVPN:$false
   

   Note

   To read more on MDM Shell cmdlets including usage, see Operations for Mobile Device Manager.

2. An internal DNS Server resolves the name of MDM Enrollment Server and MDM Device Management Server for the mobile device.

3. You enroll an internal Windows Mobile 6.1 device by using an internal wireless access point and the Domain Enroll utility on the device. When you enroll by using the Domain Enroll utility, you must supply the fully qualified domain name (FQDN) of the MDM Enrollment Server (internal name). To enable Wi-Fi on the mobile device, see Windows Mobile Powered Device Wi-Fi Configuration.

Once enrolled, the managed device will communicate directly with the MDM Device Management Server.