We have setup a Certificate server for client machine authentication which will be used to set up a VPN before the client logs in to an AD.
We get an error I cannot troubleshoot due lack of log information.
- Host checker policy for Machine Certificate passes.
- Source IP realm restrictions are passed.
- Testing Certificate realm restrictions FAIL.
- Login failed. No Certificate.
I would like to get more detailed log information to pinpoint what goes wrong. Cannot find any advice how to get more detailed information in logs regarding this error message.
@tkrjukoff We capture a detailed level logs and search the debuglog.log file with string jamcertlib which would show events related to cert auth.
@tkrjukoff Debug log file location - C:\ProgramData\Pulse Secure\Logging
or You can save the logs from the pulse client , open the zip file and navigate to Logs->Program Data - Debug log.
For Machine authentication, make sure you have only one machine certificate installed on the PC.
I configure debugging as described in Using the Debug Log (pulsesecure.net). Clear the log, try to connect the client and then Save Debug Log. But the log file is encrypted and not readable. Pls advice.
Have no Client logs since we are in initial phase to get the PS Client from appliance. Point is to get a machine cert authenticated VPN before the user logs in his AD via the machine VPN.