What is Check Point Harmony Mobile VPN integration in Applivery?

It strengthens device protection by routing all network traffic through Check Point’s secure infrastructure.

How does Harmony Mobile VPN enhance security?

It adds a security layer, protecting users from malicious connections even outside corporate networks.

How do I generate a network policy certificate in Check Point?

In the Check Point Portal, go to Policy > Global Policy > Network Protection > HTTPS Settings and generate a new certificate.

What VPN configurations are needed in Applivery?

Configure Authentication Method, Provider Type, User Defined Name, VPN Subtype, Vendor Config, Remote Address and Enable VPN On Demand.

What is the VPN Subtype value for Check Point in Applivery?

The VPN Subtype should be set to `com.checkpoint.capsuleprotect`.

What Vendor Config should I use for Check Point in Applivery?

The Vendor Config should be set to `{"zero_touch": "true"}`.

Where do I upload the Check Point certificate in Applivery?

In the policy configuration, add a Certificate (Trusted CA) and upload the certificate in the Payload Content field.

What username should I use for the VPN Account in Applivery?

The Account Username should be set to `{{device.serialnumber}}`.

Secure Mobile Devices: Check Point VPN & Applivery Integration

Integrating Check Point Harmony Mobile VPN within your Applivery Workspace strengthens device protection by ensuring all network traffic is securely routed through Check Point’s trusted infrastructure.

The VPN feature adds a critical security layer to Harmony Mobile’s threat prevention capabilities, helping protect users from malicious or unsafe connections even when they’re outside corporate networks.

By combining Harmony Mobile’s Zero-Touch deployment with automated VPN configuration, organizations can deliver consistent, always-on protection for mobile devices without requiring any manual setup from end users.

Implementation steps

Generate the Policy Certificate in Check Point

To begin, access the Check Point Portal and open the Policy (1) section. Expand the Global Policy (2) (or the workspace policy relevant to your environment) and navigate to the Network Protection (3) settings.

Within this section, locate the HTTPS Settings (4) panel and generate a new network policy certificate (5). Be sure to save this certificate securely, as it will be required later when configuring the policy in Applivery.

Before leaving this page, it is also recommended to enable the Use next generation ONP (6) option to ensure the most up-to-date protection features are applied.

Configure the Policy in Applivery

Once in the Applivery Dashboard, go to any of your Policies (7). Choose the policy where you want to configure the VPN. From the left-hand menu, navigate to the + Add configuration option and then choose VPN (8).

Note

If you haven’t yet integrated Check Point Harmony Mobile into your workspace, or haven’t added the app to your policy, you can learn how by following this link.

You will need to make the following configurations:

Authentication Method: Password.
Provider Type: Packet-tunnel.
Enable HTTPS: 0.
User Defined Name: Check Point Local Tunnel.
VPN Subtype: com.checkpoint.capsuleprotect.
Type: VPN.
Vendor Config:{ "zero_touch": "true" }.
Remote Address: www.checkpoint.com
Enable VPN On Demand: 1.

Within the On-Demand Rules section:

Add rules for Connect + WiFi and Connect + Mobile.
Optionally, you can include Connect + Ethernet for wired connections by selecting Connect in the On-Demand Action field and Ethernet in the Interface Type Match field.

Within the VPN section:

Account Username: {{device.serialnumber}}.
Authentication Method: Certificate.

Certificate configuration

From the left-hand menu, navigate to the + Add configuration option and then choose Certificate (Trusted CA) (9).

In the Payload Content field, upload the certificate you previously downloaded from the Check Point portal. Once uploaded, the certificate will appear in the policy list, ready for deployment.

Finally, save the policy and deploy it.

Key Takeaways

Integrating Check Point Harmony Mobile VPN with Applivery enhances mobile device security.

Zero-touch deployment simplifies VPN configuration for end-users.

Proper certificate configuration is crucial for establishing a secure VPN connection.

Applivery policies allow for automated VPN configuration.