- Pulse Secure Community
- :
- About davido140_
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
since
10-29-2017
10-29-2017
davido140_
Occasional Contributor
5
Posts
0
Kudos
0
Solutions
09-10-2014
04:11:AM
Well, I've found the cause of it... but no idea how to fix it "properly". Exporting the XML config I found a list of all the registered mobile devices, attached to a user account and with a: <EAS-backend> field set (to the incorrect URL) So deleting registered devices under System>Status>Devices fixes the issue. No clue where it inherits that from... could be something from their MDM solution (Airwatch), could be from AD/Mailbox, could be an old legacy field from older versions of the config (upgraded all the way from version 5 or 6 IIRC)...
... View more
09-10-2014
01:09:AM
Hi, I was hoping someone could maybe shed some light on a very strange ActiveSync issue via the MAG, running 8.0r6. I've setup ActiveSync/OWA authorization only rules loads of times, and it works perferctly for "full fat" OWA. The problems arise when I tick the ActiveSync only box. It works for some users, but for most it doesnt work. On further investigation I find the following... Working user Request hits VirtualIP address, certificate offered correctly (https://owa1.mycompany.com), User Access logs shows the request, source IP, username and deviceID no problems URL re-written to the correct internal server name (https://exchange-cas.mycompany.internal) Non-working user Request hits VirtualIP address, certificate offered correctly (https://owa.mycompany.com), User Access logs shows the request, source IP, username and deviceID no problems URL re-written to incorrect internal server name (https://owa2.mycompanycom) The "incorrect" URL is valid for other users, I dont pretend to understand the intricacies of MSX storage groups, DAGs, etc. there's a lot of failover and redundancy built into the exchange infrastructure. That URL is valid for some users but not the one in question. Now the weirdest part... If I configure a profile on another iphone (mine), for the non-working user, it goes through just fine!!! I cant even fathom how that is possible, we've ruled out all MDM software. Where is the MAG getting that URL from, it's not in the local config on the device at all, there's definitely no passthrough proxy re-writing rule for it, it's nowhere... In my experience Auth-only pass-through configs "just work", External URL is ALWAYS rewritten Internal URL. So perhaps not user specific, but device specific, but how? they both pass through the same rule which should be re-writing the requests as per the authorization only virtual hostname config. I'm well and truely stumped! Over to you Juniper community! Any ideas? Many Thanks Dave
... View more
03-22-2012
10:44:AM
Hi, Did you ever get anywhere with this issue? I'm seeing exactly the same at a couple of client locations. Thanks Dave
... View more
11-04-2011
06:56:AM
Hi, You should be looking to upgrade to the MAG Series, (dont panic at the "junos" name, it's just a name) the OS is exactly the same as the SA series and the licence model is a little more flexible. The MAG 4610 should do the trick for a direct 4000/4500 appliances and offer the best future proofing for new software releases. Regards Dave
... View more
12-18-2008
02:49:AM
I can confirm what you said about the policy trace still running, I've just seen exactly the same symptoms and error and there was a policy trace that had probably been left running for weeks! Thanks!
... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy.
Pulse Secure has updated its Privacy Policy effective June 28, 2017.
