Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Exceeds maximum fragment - Pulse Authentication Error

ForumQuestioner_
Not applicable
‎12-07-2010 11:56:AM
‎12-07-2010 11:56:AM

Exceeds maximum fragment - Pulse Authentication Error

After upgrading from 6.5 to 7.0R3 I am getting the below error in the user event log of the SA every time I try to log in via the Pulse client. The client side simply says authentication failed each time the login info is entered. Network Connect was configured and working before upgrade and still works fine.

EAM24460 2010-12-07 11:35:37 - ive - [X.X.X.X] XXXXXXX()[] - EAP-JTNC Request 101880 exceeds maximum fragment 100000

No matter which laptop I try from (tried 2), I get the error every time the username and password are entered (tried 2 usernames as well). My laptop can connect to other SSL VPN pulse connections without problem but fails on this one. The same user accounts work just fine when using the Network Connect client to the same SSLVPN. I have migrated all of the relevant role mappings and other settings to support the us eof Pulse. I have done a number of Pulse deployments and have never run into this before so as far as I can tell this one isn't my fault Smiley Wink

Help please.
0 Kudos
11 REPLIES 11
zanyterp_
Respected Contributor
‎11-19-2007 08:50:AM
‎11-19-2007 08:50:AM

Re: Exceeds maximum fragment - Pulse Authentication Error

Yes, that is correct.

0 Kudos
jayLaiz_
Super Contributor
‎11-25-2009 06:03:AM
‎11-25-2009 06:03:AM

Re: Exceeds maximum fragment - Pulse Authentication Error

Thanks for the findings,

Looks like this issue is fixed in 7.2x + pulse 3.x combination as per your update

Regards,

Jay

0 Kudos
zanyterp_
Respected Contributor
‎12-23-2010 12:19:AM
‎12-23-2010 12:19:AM

Re: Exceeds maximum fragment - Pulse Authentication Error

Does your policy trace give anything interesting?

Are you using any pre- or post-auth mechanisms that are unique to this deployment?

I would recommend saving all logs (in detail level) and open a case with JTAC.

0 Kudos
celero.security_
Occasional Contributor
‎04-29-2011 12:26:PM
‎04-29-2011 12:26:PM

Re: Exceeds maximum fragment - Pulse Authentication Error

I recently encountered the same issue. It appeared to occur when I enabled Host Checker remediation options for Antivirus (Download latest virus defs, Turn on real time protection, start antivirus scan) or Firewall (Turn on Firewall)

Has anyone else used these remedation options? Is this a known issue with the IVE

btw i am running ver7.1R1 (latest) on an SA-4000.

Trevor

0 Kudos
ruc_
Regular Contributor
‎05-05-2011 09:57:PM
‎05-05-2011 09:57:PM

Re: Exceeds maximum fragment - Pulse Authentication Error

The message "exceeds maximum fragment 100000" seems to indicate that its hitting a limit. This might be related to large number of HC policies (like check for *all* supported AVs, Firewall, etc) Does it work if you reduce the number the HC policies?  In either case I would recommend opening a JTAC case for this.

0 Kudos
NULL_
Contributor
‎05-16-2012 11:36:AM
‎05-16-2012 11:36:AM

Re: Exceeds maximum fragment - Pulse Authentication Error

Hi there,

how is it possible that juniper still did not fix this issue?

It's about year and a half that a case regarding this issue had been opend @ JTAC :'( (and Closed by jtac..)

Still no Fix implemented in Pulse - any update on this?

regards

NULL

0 Kudos
zanyterp_
Respected Contributor
‎05-16-2012 07:06:PM
‎05-16-2012 07:06:PM

Re: Exceeds maximum fragment - Pulse Authentication Error

NULL: was there anything noted by jtac before they closed the case? 

if we can't replicate an issue or get full logs, yes, it is possible there is no fix yet.

0 Kudos
ruc_
Regular Contributor
‎05-16-2012 07:15:PM
‎05-16-2012 07:15:PM

Re: Exceeds maximum fragment - Pulse Authentication Error

This issue should be fixed in 7.2R1 and higher. What release are you seeing it on and can you provide some more details on your endpoint policies config?

0 Kudos
NULL_
Contributor
‎05-17-2012 03:15:AM
‎05-17-2012 03:15:AM

Re: Exceeds maximum fragment - Pulse Authentication Error

Hi there,

have had enabled all Firewall Products, and limited to a few AV Vendors (because we had the problem in prior..) also we do have enabled patch assessment for Win7/WinXP/WinVista and Operating System assessment.

It's realy nice to see that fixed bugs (if you're right) like this horrible one won't get into release notes Smiley Frustrated ...

We are actualy using:

HostChecker: 7.1R7 (build 20581)[7.1.7-20581(1716)

Pulse: 2.1.3.18795

Regards

NULL

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.