Showing results for 
Search instead for 
Did you mean: 

WSAM to file share

New Contributor

WSAM to file share


We just want to be able to share drives via WSAM over our SSLVPN (SA-4500). Its been a difficult road working with Juniper support, so I'm coming to community.

I started in Respource Profiles>Clinet Application Resource Profiles . I created "I File Share", WSAM/NetBIOS file browsing,,445 /,445 / (i is the file share server at, a and z are domain controllers for authentication). I Autopolicy and added to all roles. I added the same information to "WSAM Destination Resource Profile" too.

So the first issue is I can't resolve when I do // in explorer. Is there some sort of way to do this? Second, if I use the IP, it just doesn't work.

Where do I go from here?

Thanks, Tuc


Re: WSAM to file share

to be able to use either IP or name, you need to check the option

"ip based matching for hostname based policy resources" in the options of resource policies - files

then you also need to be able to resolve the names you'd like to use in the shares.

quick question : why do you need to use WSAM and not network connect for instance or the core file share ?

New Contributor

Re: WSAM to file share


Yes, we have that option checked.

What is the reccomended way to do that using WSAM? I would think about the only way is to put it into the hosts file.

Otherwise, we were originally sold on the fact of not having to create NCs for everyone that needed to do this, only WSAM. There are 2 minute "HOWTOs" on doing it via WSAM. Every engineer that calls says its really simple and 2 1/2 hours late goes off with logs/etc and says that they'll get back to me and never do. We really want to use WSAM for this.

Does anyone have it running?


New Contributor

Re: WSAM to file share

Yes we do:

first, be able to resolve netbios name by creating an SAM application "netbios". Name requests will be forwarded to the IVE. The IVE has to be able to resolve itself

Then add a WSAM destination to your file server using something like: 10.x.x.x/32:137-139,445

Apply these 2 profiles to the roles you need, and that does the trick.