Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Juniper UAC for firewall policy authentication on SSG140s

raph01_
Not applicable
‎12-22-2011 06:43:AM
‎12-22-2011 06:43:AM

Juniper UAC for firewall policy authentication on SSG140s

Hi,

I understand that I can use the UAC to force users to authenticate if they hit certain firewall policies on my SSG140. I want to know what the user experience is when there are multiple policies that require authentication. For example if I have these firewall policies:

Policy 1

Untrust to Trust from Any to 2.2.2.2 protocol SSH

Policy 2

Trust to Production from 2.2.2.2 to 3.3.3.3 protocol telnet

Authentication is enabled on both policies via an IC controller. What happens if a user connects to 2.2.2.2 hitting policy 1 and authenticates to the IC controller using a 2 factor token, then the same user makes the connection to 3.3.3.3 traversing policy 2? Is it possible to have the user only authenticate once and then the IC and SSG140 recognise that user for future policies that require authentication, within a certain time period?

0 Kudos
1 REPLY 1
srigelsford_
Contributor
‎12-23-2011 12:33:AM
‎12-23-2011 12:33:AM

Re: Juniper UAC for firewall policy authentication on SSG140s

Yes, the user will only need to authenticate once. Once they are in the auth table on the firewall all their access will be provisioned.

If you use OAC or Pulse on their desktop they do not need to authenticate at all...

Sam.

JNCIS-FWV JNCIS-SEC JNCIS-SSL JNCIS-ER

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.