Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Embedded Browser / IE11 Retire / SAML Auth

SOLVED
Go to solution
elevator4
Occasional Contributor
‎06-07-2022 07:26:AM
‎06-07-2022 07:26:AM

Embedded Browser / IE11 Retire / SAML Auth

Hi All - 

 

I'm curious if others are in a similar situation and can add some clarity.  My org uses Pulse Secure Client on Windows and we enabled the embedded browser so our user base can perform SAML/MFA authentication within the Pulse App.  I think that IE11 is leveraged as the "embedded browser" for the this authentication process to take place within the Pulse App -- is this correct?

With IE11 being retired (June 15th), I am concerned that the authentication process may break.  I see KB45094 shares a solution to upgrade to PDC 9.1R15 and add some reg keys to utilize the Edge browser -- is this for the embedded browser as well?  I don't want to rush a new Client deployment if it's not needed, but certainly will if I have to keep things operational (we would have to do this via SCCM).  I do have a support ticket open to get answers too, but wanted to get the community's take on this as well.

 

I have tested on 2 machines the GPO setting to "Disable Internet Explorer 11 as a standalone browser" -- with that applied, I am still able to authenticate through the Pulse Client, however, I'm not confident this replicates what will happen when Internet Explorer 11 is retired.  Pulse Client doesn't really use IE11 as a standalone browser, since it's embedded, but I'm no expert on the technicalities of this GPO and how Pulse embedded browser works.

 

At any rate, I'll stop rambling and hopefully will get some thoughts from others.  Appreciate any insights!

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
zanyterp
Moderator
Moderator
‎06-08-2022 06:57:AM
‎06-08-2022 06:57:AM

Re: Embedded Browser / IE11 Retire / SAML Auth

yes, you are correct that the embedded browser is currently using an IE11 stub. as such, we do not expect failure to happen once this is removed/marked as retired by microsoft
no, the registry changes are not for the embedded browser; that will only be for sites using the external browser for saml login through the pulse client
as far as what will happen? it depends on your idp: if it still allows ie11, nothing should change; if it prevents ie11 access, login will fail

View solution in original post

0 Kudos
3 REPLIES 3
zanyterp
Moderator
Moderator
‎06-08-2022 06:57:AM
‎06-08-2022 06:57:AM

Re: Embedded Browser / IE11 Retire / SAML Auth

yes, you are correct that the embedded browser is currently using an IE11 stub. as such, we do not expect failure to happen once this is removed/marked as retired by microsoft
no, the registry changes are not for the embedded browser; that will only be for sites using the external browser for saml login through the pulse client
as far as what will happen? it depends on your idp: if it still allows ie11, nothing should change; if it prevents ie11 access, login will fail
0 Kudos
elevator4
Occasional Contributor
‎06-08-2022 02:17:PM
‎06-08-2022 02:17:PM

Re: Embedded Browser / IE11 Retire / SAML Auth

Thanks a bunch zanyterp, much appreciated!  I feel good about where we stand currently, but will definitely be looking to deploy a newer Pulse Client in the coming weeks to reduce IE11 dependency (even if it is embedded).

 

Thanks again!

zanyterp
Moderator
Moderator
‎06-08-2022 03:50:PM
‎06-08-2022 03:50:PM

Re: Embedded Browser / IE11 Retire / SAML Auth

you are welcome; hopefully all goes well with your idp until we are able to get a new client out that uses edge as the rendering engine
0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.