We've a an issue identified by an assesment carried out on our setup that states the following are still available even if the web session is unathenticated
any ideas where I can adjust our config to fix this..? is it just the cach cleaner.?
We will not be able to block access to those files from the VPN server configuration, as they need to be downloaded and installed on the user machine, if there is any pre-authentication (before authentication) policies like host checks were enabled on the user realm i.e. host checker component will get downloaded with help of active-x object tags embedded on the webpage, which a Setup Client can read/parse.
Setup Client is the helper application which will parse the launch arguments from the VPN server and installs/invokes other Pulse Secure components from the user machine to carry out the requried tasks.