User profile for user: Modus_Operandî
Modus_Operandî Author
User level: Level 1
4 points

Is it possible to create an Always-On VPN as a private individual on iPhone?

Hi,


I am looking for a way to configure an Always-On VPN (or equivalent) on my iPhone so that the VPN/DNS profile cannot be disabled or removed by the user.


From Apple’s documentation, it appears that this requires Automated Device Enrollment (ADE) through Apple Business Manager (ABM) or Apple School Manager, which in turn seems to require being part of an organization (business, school, etc.).


Here’s what I’ve done so far:


  • I have made the device supervised.
  • I have tested pushing an MDM profile via Miradore, but the profile can still be removed by the user.
  • Up until now I have been relying on a third-party DNS profile, but I am open to better alternatives if that approach is inherently limited.


My question is therefore:


  • Is there any way for a private individual (who neither runs a business nor belongs to a school) to configure an Always-On VPN on iOS?
  • Or is it a hard technical limitation in iOS that Always-On VPN only works with ADE-enrolled devices?


Any insights or experiences would be greatly appreciated.

Posted on Sep 7, 2025 09:14 AM

Reply
2 replies
User profile for user: lobsterghost1
lobsterghost1
Community+ 2025
User level: Level 10
175,409 points

Sep 7, 2025 09:18 AM in response to Modus_Operandî

Since for people who don't have managed devices we NEVER recommend using a VPN on a personal iPhone, I'm not sure this side of the forum is the right place to ask. I'm assuming you want to do this for phones managed by an employer, right? If yes, you'll likely have more success asking in the developer forums --> Apple Developer Forums


Reply
User profile for user: leroydouglas
leroydouglas
Community+ 2025
User level: Level 10
196,488 points

Sep 7, 2025 09:20 AM in response to Modus_Operandî

Modus_Operandî wrote:

• Hi,

I am looking for a way to configure an Always-On VPN (or equivalent) on my iPhone so that the VPN/DNS profile cannot be disabled or removed by the user.


Any insights or experiences would be greatly appreciated.


see whats here—

How can I add up VPN configuration - Apple Community


VPN device management settings overview for Apple devices - Apple Support



Reply

Is it possible to create an Always-On VPN as a private individual on iPhone?

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up