This article discusses software internally used by Apple. Acquiring a copy without Apple's consent is illegal and may result in being scammed. |
AppleConnect Mini is an internal app used by Apple retail employees and corporate employees to setup and configure AppleConnect VPN. The app is configured with an Apple IS&T profile which also contain the Apple IS&T Split Tunnel VPN.
Contents inside the Apple internal VPN
<?xml version="1.0" encoding="UTF-8"?><!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1">
<dict>
<key>PayloadUUID</key>
<string>E44965E2-66D6-4FBC-9A24-06BB72A634A4</string>
<key>PayloadType</key>
<string>Configuration</string>
<key>PayloadOrganization</key>
<string>Apple IS&T</string>
<key>PayloadIdentifier</key>
<string>E44965E2-66D6-4FBC-9A24-06BB72A634A4</string>
<key>PayloadDisplayName</key>
<string>Apple Networking VPN (Split Tunnel) - IdMS</string>
<key>PayloadDescription</key>
<string/>
<key>PayloadVersion</key>
<integer>1</integer>
<key>PayloadEnabled</key>
<true/>
<key>PayloadRemovalDisallowed</key>
<false/>
<key>PayloadScope</key>
<string>System</string>
<key>PayloadContent</key>
<array>
<dict>
<key>PayloadUUID</key>
<string>DC9D4838-C5A1-4A15-AD61-E8B9A0B7D459</string>
<key>PayloadType</key>
<string>com.apple.vpn.managed</string>
<key>PayloadOrganization</key>
<string>Apple IS&T</string>
<key>PayloadIdentifier</key>
<string>DC9D4838-C5A1-4A15-AD61-E8B9A0B7D459</string>
<key>PayloadDisplayName</key>
<string>com.apple.vpn.managed</string>
<key>PayloadDescription</key>
<string/>
<key>PayloadVersion</key>
<integer>1</integer>
<key>PayloadEnabled</key>
<true/>
<key>IPv4</key>
<dict>
<key>OverridePrimary</key>
<integer>1</integer>
</dict>
<key>Proxies</key>
<dict/>
<key>UserDefinedName</key>
<string>Apple VPN (Split Tunnel)</string>
<key>VPNType</key>
<string>IKEv2</string>
<key>IPSec</key>
<dict>
<key>PromptForVPNPIN</key>
<false/>
</dict>
<key>VPN</key>
<dict>
<key>AuthenticationMethod</key>
<string>Password</string>
<key>ProviderType</key>
<string>packet-tunnel</string>
</dict>
<key>IKEv2</key>
<dict>
<key>ExtensibleSSOProvider</key>
<string>ssoid://com.apple.ist.AppleConnect.mini.App-SSO</string>
<key>RemoteAddress</key>
<string>ivpn-vod.apple.com</string>
<key>LocalIdentifier</key>
<string>com.apple.ist.saci.vpn.iphone.vpncert_$UDID_$ROOM</string>
<key>RemoteIdentifier</key>
<string>ivpn-vod.apple.com</string>
<key>AuthenticationMethod</key>
<string>Certificate</string>
<key>CertificateType</key>
<string>RSA</string>
<key>IKESecurityAssoci�ationParameters</key>
<dict>
<key>DiffieHellmanGroup</key>
<integer>14</integer>
<key>EncryptionAlgorithm</key>
<string>AES-256</string>
<key>IntegrityAlgorithm</key>
<string>SHA2-256</string>
</dict>
<key>ChildSecurityAssociationParameters</key>
<dict>
<key>DiffieHellmanGroup</key>
<integer>14</integer>
<key>EncryptionAlgorithm</key>
<string>AES-256</string>
<key>IntegrityAlgorithm</key>
<string>SHA2-256</string>
</dict>
<key>EnablePFS</key>
<integer>1</integer>
<key>EnableFallback</key>
<integer>0</integer>
<key>UseConfigurationAttributeInternalIPSubnet</key>
<integer>1</integer>
<key>OnDemandEnabled</key>
<integer>1</integer>
<key>OnDemandUserOverrideDisabled</key>
<integer>0</integer>
<key>OnDemandRules</key>
<array>
<dict>
<key>Action</key>
<string>Disconnect</string>
<key>DNSDomainMatch</key>
<array>
<string>*.apple.com</string>
</array>
<key>DNSServerAddressMatch</key>
<array>
<string>17.*</string>
</array>
<key>InterfaceTypeMatch</key>
<string>WiFi</string>
<key>SSIDMatch</key>
<array>
<string>AppleWiFiSecure</string>
</array>
</dict>
<dict>
<key>Action</key>
<string>EvaluateConnection</string>
<key>ActionParameters</key>
<array>
<dict>
<key>DomainAction</key>
<string>ConnectIfNeeded</string>
<key>Domains</key>
<array>
<string>apple.com</string>
</array>
</dict>
</array>
</dict>
</array>
</dict>
<key>DNS</key>
<dict>
<key>DomainName</key>
<string>apple.com</string>
<key>SupplementalMatchDomains</key>
<array>
<string>17.in-addr.arpa</string>
<string>corp.apple.com</string>
<string>euro.apple.com</string>
<string>asia.apple.com</string>
<string>apple.com</string>
<string>icloud.com</string>
<string>blackrock.com</string>
<string>itunes.com</string>
<string>cdn-apple.com</string>
<string>mzstatic.com</string>
<string>filemaker.com</string>
<string>iwork.com</string>
<string>int.lala.com</string>
<string>me.com</string>
<string>apple-cloudkit.</string>
</array>
<key>ServerAddresses</key>
<array>
<string>17.7.7.7</string>
<string>17.8.8.8</string>
</array>
</dict>
<key>VPNUUID</key>
<string>d5899d25-3fb5-4e64-89c3-a94a83192e44</string>
<key>OnDemandMatchAppEnabled</key>
<true/>
<key>SafariDomains</key>
<array>
<string>apple.com</string>
<string>*.apple.com</string>
</array>
<key>AssociatedDomains</key>
<array>
<string>apple.com</string>
<string>*.apple.com</string>
</array>
</dict>
<dict>
<key>PayloadDisplayName</key>
<string>Passcode Payload</string>
<key>PayloadIdentifier</key>
<string>BC0805FB-9C10-464A-A04B-A6F2FDF4F52E</string>
<key>PayloadOrganization</key>
<string>JAMF Software</string>
<key>PayloadType</key>
<string>com.apple.mobiledevice.passwordpolicy</string>
<key>PayloadUUID</key>
<string>BC0805FB-9C10-464A-A04B-A6F2FDF4F52E</string>
<key>PayloadVersion</key>
<integer>1</integer>
<key>forcePIN</key>
<true/>
<key>maxFailedAttempts</key>
<integer>10</integer>
<key>minLength</key>
<integer>6</integer>
</dict>
</array>
</dict>
</plist>
