- Pulse Secure Community
- :
- About filbert_
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
since
10-29-2017
10-29-2017
filbert_
Frequent Contributor
121
Posts
1
Kudos
14
Solutions
07-10-2015
08:21:AM
1 Kudo
If you are using a browser to intiate the VPN you cannot use device certificates for authentication. Only User certificates are supported. However, you can create a Hostchcker policy to check for a device certificate and then assign that policy the Realm. If you are using the Pulse client you can configure it to use the machine certificate store instead of the user store. Go into your Pulse connection set, and under "User Connection prefeernces" select "Select client certificate from machine certificate store".
... View more
07-08-2015
11:18:AM
We are starting to hear that VPN doesn't work via China Telecom but does with other ISPs. No work arounds I can think of.
... View more
06-08-2015
02:57:PM
What type of authentication are you using?
... View more
06-05-2015
07:53:AM
Junos is not what runs on the SA appliance. The only SCEP support I am aware of is in the Enterprise OnBoarding Feature in 8.1, and that feature requires a separate license.
... View more
06-05-2015
07:45:AM
You might have better luck posting this in the Policy forum; http://forums.juniper.net/t5/Identity-and-Policy-Control/bd-p/UnifiedAccessControl
... View more
06-05-2015
07:41:AM
It seems like everytime I have to configure Netweaver through rewriter for a customer it takes a web rewrite filter from ATAC to get it working. If you don't have a support ticket open I would start there. I'm not sure why the filter they provide doesn't make it into a release. I used the filter originally 6 years ago, then again last year to fix the same issue on very different versions of the SA.
... View more
06-04-2015
03:33:PM
From the admin gui you can view the serial number by going to Maintenance > System > Platform
... View more
06-03-2015
02:15:PM
You can create connections for UAC on the SA and vice versa. Just open up your existing connection and add a new one. Your exported .jnprpreconfig will have all connections in one file.
... View more
05-06-2015
08:46:AM
Yes that is normal when you make changes to the network settings. I think it actually warns you.
... View more
03-09-2015
07:34:AM
Not as customizable but this explains what can be done. http://www.juniper.net/techpubs/en_US/pulsesecure/pulse-secure-desktop/ps-pulse-5.1-brandingguide.pdf
... View more
03-05-2015
09:15:AM
Possibly. In your additional authentication setup on the realm you would need to change <USER> to userAttr.<auth-attr>. <auth-attr> being whatever AD/LDAP attribute you wanted to use. Make sure the attribute you want to use is in the server catalog. A Policy Trace will show what values are being retrieved.
... View more
02-05-2015
02:47:PM
I think you need to provide some more details in order to get an answer. What type of VPN client is being used? What do you mean by "you can see the device"? Can you ping a users device that is connected by vpn? What protocol is being used between the scan engine and the users PC? etc..
... View more
02-04-2015
09:19:AM
Not automatically. You can create another administraotr realm using local auth then assign it to your administrator sign in policy. That way you would choose radius or local from a dropdown.
... View more
02-03-2015
01:49:PM
I'm not sure I understand the new patch management funtionality in 8.1. The admin guide says there is a seperate license required but our SE says there isn't. I can create a HC policy and choose "Windows Update" or "Windows Automatic Update" but there's no choice of which patcehs to check for or any other details. And even though Windows update says I'm all up to date I fail the HC policy. Is it just checking that Windows update is enabled? Does anyone have any other details? The 8.1 admin guide describes downloading a list of the latest patches from the Pulse Secure staging site but I don't see anywhere to do that. Thanks
... View more
01-21-2015
02:45:PM
Have you tried turning off "VPN Passthrough" on the mifi device?
... View more
12-22-2014
11:55:AM
It sounds like you've provisioned a machine certificate. Authentication via a browser or NetworkConnect can only check a client certificate. You can setup a HostChecker policy to check for the machine certificate which will accomplish the same thing. With the Pulse client you can configure a machine certficate for authentication, you just need to enable it in the Pulse Connection set under "User Connection Preferences".
... View more
12-16-2014
09:46:AM
Try installing a newer version of Pulse 5 then uninstalling. This has worked for us countless times.
... View more
12-09-2014
08:11:AM
Upgrading to 8.0 seems to resolve the issue. I see that the IOS8 KB article was just updated to indicate at least 7.4R12 is required. Thanks
... View more
12-03-2014
02:41:PM
This should solve part of your problem; http://kb.pulsesecure.net/InfoCenter/index?page=content&id=KB25581
... View more
12-01-2014
11:47:AM
It's any application/resource using both the ios browser as well as ios applications.
... View more
11-26-2014
08:42:AM
We have an issue where Pulse on ios8 cannot tunnel any traffic. The tunnel starts fine but a tcpdump on the SA shows nothing coming from that device. An ios7 device works fine using the exact same Pulse version and policy. Is anyone else seeing this issue? Any ideas?
... View more
11-17-2014
03:24:PM
There is no 2 factor authentication that is included with the MAG2600. It only has a local UN/PW auth store. It can integrate with a number of 2 factor authentication services like Phone Factor, NordicEdge, or Google authenticator. Just to name a few.
... View more
10-21-2014
10:27:AM
Install the latest ESAP version. http://www.juniper.net/support/downloads/?p=esap
... View more
10-02-2014
10:54:AM
Can't you remove their the account from your Radius server? If not, you can create a role mapping rule based on their username but don't assign any roles to it. Make sure it's at the top of the list and that you check the " Stop processing rules when this rule matches" box.
... View more
09-23-2014
08:09:AM
I don't think there is any way around this. Users must have administrator rights in order to upgrade or install on a MAC.
... View more
09-23-2014
08:02:AM
In order to allow the Juniper appliance to accept Per app VPN connections you need to purchase a PAC license from juniper. They are relatively cheap depending on the appliance model you are using.
... View more
09-23-2014
07:53:AM
On the admin console go to Users > Junos Pulse > Connections. Open the connection set you want to add a connection to. Under Connections choose New. Add the connections details and save. You should have two conections now. Go to the Components tab and check the box next to the Component set that includes the Connecton set you just modified and click the "Download Installer Configuration".
... View more
09-12-2014
07:54:AM
This should answer all your questions. http://www.juniper.net/techpubs/software/ive/guides/howtos/How_To_Certificates.pdf
... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy.
Pulse Secure has updated its Privacy Policy effective June 28, 2017.
