Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Pulse Connect Role/Realm Usage

CharlesP
Occasional Contributor
‎08-19-2020 12:21:PM
‎08-19-2020 12:21:PM

Pulse Connect Role/Realm Usage

Hello,

 

I'm working on auditting and cleaning up the configuration of a Pulse Connect appliance. Other than parsing through logs and reports and crawling through the config, is there a good way to gauge where and if a role and realm is used within the appliance? I have a list of roles and realms I'd like to delete as I couldn't find them linked anywhere, but I'd like better assurance that they aren't used. Or alternatively, is there a way to disable a role or realm without deleting it so that it can quickly be re-enabled again if it turns out I was mistaken about its usage?

 

Thanks

0 Kudos
4 REPLIES 4
flipPipe
Frequent Contributor
‎08-24-2020 06:36:AM
‎08-24-2020 06:36:AM

Re: Pulse Connect Role/Realm Usage

Hi CharlesP,

 

I've already request PS to develop that kind of metrics to help in cleaning the configurations. If you want, ask your SE to push for this change request

 

CSC-I-603

Provide usage data on REALM, Role & VPN Access Control.

 

The best option to disable a role, is to remove it from role mapping. For the realm, just remove it from realms available or disable the signin page.

 

CharlesP
Occasional Contributor
‎09-02-2020 09:59:AM
‎09-02-2020 09:59:AM

Re: Pulse Connect Role/Realm Usage

Thanks for the info.

 

As a follow-up question then, if I were to attempt to delete a role or realm, and it happened to be used somewhere, would the PSA notify me that it was used and deny my deletion? Or would it delete it anyway, and leave some Sign-In page in an unusable state?

DavePincini
New Contributor
‎11-09-2020 12:45:AM
‎11-09-2020 12:45:AM

Re: Pulse Connect Role/Realm Usage

 

@flipPipe wrote:

Hi CharlesP,

 

I've already request PS to develop that kind of metrics to help in cleaning the configurations. If you want, ask your SE to push for this change request

 

CSC-I-603

Provide usage data on REALM, Role & VPN Access Control.

 

The best option to disable a role, is to remove it from role mapping. For the realm, just remove it from realms available or disable the signin page.

 

Good day. Do you know if there is a way to check on the progress of this change or if it is being considered?

This would save me 10's of hours of work a year!

 

0 Kudos
zanyterp
Moderator
Moderator
‎01-23-2021 02:58:AM
‎01-23-2021 02:58:AM

Re: Pulse Connect Role/Realm Usage

it will warn if a realm is explicitly being used in an authentication policy
it will warn if a role is explicitly being used in a resource policy
0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.