Deploy the TMWS Mobile VPN service to mobile devices in your organization to forward web traffic from these devices to TMWS.
For users wanting TMWS protection on their iOS or Android mobile devices, Mobile VPN connects each mobile user to the TMWS cloud proxy and establishes an Internet Protocol Security (IPSec)-based VPN tunnel to send and receive web traffic. Mobile VPN uses certificate-based authentication coupled with the mobile user's user name and password to authenticate the user when establishing the VPN tunnel.
The mobile devices are IPSec clients of the TMWS Mobile VPN Server. For IPsec clients, TMWS secures IP communications by authenticating the user when establishing the tunnel and encrypting each IP packet of a communication session.
For mobile users leaving an organization, all that is needed to disable the Mobile VPN service for them is to disable their authentication credentials (either in Active Directory or in the hosted environment). There is no need for you to proactively uninstall the profile or certificates as the user authentication will prevent the user from using TMWS.
TMWS does not decrypt HTTPS traffic.