Android Device Configuration

This task requires your TMWS logon credentials, which is provided by your organization's security administrator. Contact the administrator if you have not received information about your logon credentials.

Overview of user tasks:

  1. Prepare a device running Android 8.x or later.

  2. Install the TMWS certificates for Android.

  3. Configure Mobile VPN on the device.

Part 1: Certificate Installation

Note:

An Android device from a specific manufacturer was used to capture the images in this procedure. The menu options, color schemes, and other user interface elements from other device manufacturers may be different.

  1. On the Android device, scan the QR code or type in a browser the user portal URL, both of which are provided by your organization's administrator.

    The TMWS end user portal logon screen opens.

  2. Type your logon credentials when prompted in the form of user@example.com.

    The TMWS End User Portal Welcome screen opens.

  3. Tap Configure Android.

    The Mobile VPN for Android screen opens.

  4. Tap Download the SSL Certificate.
  5. Type a name tag for the certificate and tap OK.

    A message displays, informing you that the CA certificate has been installed.

  6. Go back to the Mobile VPN for Android screen and tap Download the Android Certificate.
  7. When prompted for a password, type trendmicro.
  8. Accept the default certificate name "TMWS Mobile" and then tap OK.

    A message displays, informing you that the Android certificate has been installed.

  9. To view your CA certificate:
    1. Go to the Trusted Credentials screen (for example, access this screen by going to Settings > Security > Trusted Credentials).

      The System tab is displayed by default.

    2. Click the User tab.

      The CA certificate you installed appears.

Profile Regeneration

Regenerate the TMWS profile only if instructed by your security administrator.

  1. On the Android device, scan the QR code or type in a browser the user portal URL, both of which are provided by your organization's administrator.

    The TMWS end user portal logon screen opens.

  2. Type your logon credentials when prompted.

    The TMWS End User Portal Welcome screen opens.

  3. Tap Replace All.

    A message displays, prompting you to confirm the action.

  4. Tap Confirm Replace All.

A message displays, informing you that the profile has been regenerated.

Part 2: Mobile VPN Configuration

  1. Go to the VPN screen (for example, access this screen by going to Settings > Wireless and network > More settings > VPN).
  2. If you have the option of basic VPN or advanced VPN, choose basic VPN.
  3. Add a new VPN profile (for example, tap Add VPN network).
  4. Specify the following information for the profile:

    • Name: Type a profile name (such as TMWS VPN Service). This can be any ASCII string that describes your profile.

    • Type: Select IPSec XAuth RSA.

    • Server address: Type vpn.iws-hybrid.trendmicro.com.

    • IPSec user certificate: Select the Android certificate you have just installed (for example, TMWS Mobile).

    • IPSec CA certificate: Select the Android certificate you have just installed (for example, TMWS Mobile).

    • IPSec server certificate: Select Received from server.

  5. Tap Save.
  6. Tap the newly-created profile.
  7. Type your TMWS logon credentials.
  8. Optionally select Save account information to avoid re-typing it later.
  9. Tap Connect.

    The device is now connected to the TMWS Mobile VPN.

  10. Access any HTTP website using your default browser.
  11. To disconnect, tap the profile and then tap Disconnect in the dialog box.