cancel
Showing results for 
Search instead for 
Did you mean: 

Host Checker and ios

Occasional Contributor

Host Checker and ios

Hi,

I'm setting up my first pulse secure appliance which is a Juniper MAG 4610.
I'm sure I'm doing something wrong. I have created my host checker policy for ios and assigned it to a role. Using the pulse secure app I can connect to the VPN and use the web bookmarks under the intranet button.
However I want my ios users to be able to use RDP, I can't see how I can add that as a bookmark in the pulse secure app. Fairly certain I can't and they need to use the web page.
They can't access the web page to do this as I get an error which says 'Host Checker is not supported. Please contact your Administrator.'
If I turn host checker off, they can access the web page and use the HTML 5 RDP feature but not my java one.

Is there a way for them to use either standard RDP or HTML5 RDP with host checker turned on? If so what do I need to do?

Regards,
Aaron
5 REPLIES 5
Moderator

Re: Host Checker and ios

Host Checker is available only through the Pulse client. You can put web bookmarks there, as you are aware, but it is not possible to do HTML5 through the Pulse client (and iOS does not support Java).

For RDP, your users can connect using their preferred RDP client over the tunnel; otherwise, they can use the HTML5 client through the browser if you have a role/realm configured without Host Checker.
Occasional Contributor

Re: Host Checker and ios

Is there some way I can onboard a device using 3rd party MDM or the juniper/pulse secure mobile security suite as I could then verify security requirements that way which means I could then disable host checker for ios, is that possible? I would still need host checker enabled for desktop OS's

As that would allow ios users to use rdp via the html5 browser session whilst meeting security requirements which is the ultimate goal here?
Moderator

Re: Host Checker and ios

Unfortunately, no, there is no way to do Host Checker without the Pulse client.
If your on-boarding includes activating a certificate on the client, you can then do certificate authentication through Safari and if users don't have the certificate they are not authorized by you.
ruc
Pulser

Re: Host Checker and ios

Another option is to use Host Checker and Pulse client, however instead of using the HTML5 feature you create a L3 VPN to tunnel traffic to backend RDP servers. Then use a third party RDP client (for example the Microsoft RDP client for iOS) and RDP to backend servers. Though the user experience is probably not as good as the HTML5 option.
Occasional Contributor

Re: Host Checker and ios

Unfortunately the user experience is essential. I work for a small specialist university and this is a solution for academics(artistic types) who are not in the least IT literate and will expect this to be a two click solution. In an ideal world they would go to a web page and just access the rdp server and there files. Getting them to use one app will be challanging enough, but to use multiple apps and configure them will be even more so.

I'll record a video of the process for configuring the pulse secure and file/rdp apps and see how they get on.
I'll continue to look at this. Thanks for all your input, it has been greatly received.