I need to configure certificate based machine authentication (W/AD) before the user logs in to AD. Have got the Auth Server part OK and certificate to work but getting a bit confused with the rest of the procedure when it comes to moving into the user authentication part.
I would like to have a easy to follow flow diagram for the tasks involved and in which order to configure each. I do not work with PS on daily basis and get a bit lost in all different "sections" of configuration to be tied together to a flow.
>> Create AD and cert auth server.
>> Map them to different realms (machine and user).
>> Configure user roles for each with required access.
>> Configure pulse client connections with machine or user tunnel mode (use credential provider if'd like to use SSO for user tunnel).
>> Push the configuration to the Pulse Client installed on the user machine (web based or preconfig based)
>> Pulse Client will become aware of tunnel modes configured.
>> System reboot/shutdown or user profile sign-out.
>> On the windows logon screen, machine tunnel will be connected in the background.
>> After windows user login, machine tunnel will get disconnected and user tunnel will be get connected automatically using the windows creds.
If this is your first time, I would recommend you to open a support ticket with us for assistance