Thanks for the reply.  Just wondered if anyone knew the answer to my 2nd question?  Do I have to have v7.2 running on an appliance to be able to use Junos Pulse v3?   Thanks ... View more

Hi, Apologies for taking so long to reply. Many thanks for everyones help, please find answers to your replies below: 1) RDP is enabled on the machines that I am trying to connect to. I still cannot connect using RDP or any remote access tool and I cannot map drives etc. 2) How would I make the Network Connect policies bi-directional if that is the problem, I can only see a way of making them work in one direction. 3) When the user is connected using Network Connect I cannot ping the machine they are using froma command prompt on my machine. I can however logon to the SA2000's web admin and successfully ping the machine using the troubleshooting section. It seems that something is blocking the ping (or remote access tools) from my machine that isn't blocking traffic from the SA2000 itself. If I try to do a tracert to the machine the first hop is the SA2000 and then it doesn't get to the next one Thanks for the help again, I am sure that it is just something easy in the config but I cannot work out what is is. D ... View more

Hmmm, so this issue cannot be fixed without splashing some cash? Thanks, D ... View more

Hi, I don't suppose anyone knows how to fix this? I can't get the two systems to work at the same time and it is driving me mad Thanks, D ... View more

Hmmm, I can't seem to get this working. I have done the following: Under Network, Hosts, I have added an entry called mobilemail and pointed it to the internal address of the mail server In the Signin policy I have changed the backend URL to various different things. None of the changes I have made to the backend URL seem to work, if I check the User Access log then I can see lots of DNS lookup failures. Apologies if I am bieng a bit dim Thanks, D ... View more

Hi, Thanks for the advice. Sorry to sound a bit dumb but I just wanted to confirm something. I have setup a host of mobilemail pointing to the IP address of the Exchange server (10.1.1.2 for example). In my signing in policy which section do I have to change? I have a virtual hostname of name.domain.co.uk and and backend URL of http://mailserver.domain.co.uk:80/* Which bit on the signing in policy do I need to change? Thanks, D ... View more

Hi, Many thanks for the reply. I tried the settings that you are using but didn't seem to have much success. It seemed to be the backend resources that was causing the problems. I had a tinker about and ended up with the following settings: Sign In Policy User Type: Authorization Only Virtual Hostname: host.domain.co.uk Backend URL: http://exchangehostname.domain.co.uk:80/* Authorization Server: No Authorization Role Option: ActiveSync Protocol Option: Allow ActiveSync Traffic Only: Yes Role Name: ActiveSync Web: Yes Resource Profile Type: Custom Name: ActiveSync Base URL: http://exchangehostname.domain.co.uk Autopolicy Web Access Control: Yes Roles: Selected Roles: ActiveSync This auto created a Web ACL policy. Now, from the phone I put in: Server: host.domain.co.uk Domain: domain.co.uk Username: username Password: domain password I also created a generic certificate. This all seems to be working, but the only problem I am having is that when I first connect to the mailbox on the phone I get the following message: Cannot verify server identity. Exchange cannot verify the identity of "host.domain.co.uk". Would you like to continue anyway. If I click on details it shows that it is trying to accept the certificate that is being used for general access to the SA 2000, not the new one I created for ActiveSync access. Is this OK, or do I need to do something else to get the phone to use the newly generated generic certificate that was created? Thanks, D ... View more

OK, think that I have figured out what the problem is - it seems to be something to do with our proxy server. Currently users have their IE pointing to a wpad file and are not able to change those settings. If I do a bit of tinkering and remove those IE settings so that they are not pointing to the wpad file and therefore not going through the proxy server everything works fine. I don't suppose anyone knows how to get round this do they? Many thanks, D ... View more

Many thanks for the replies. I initially did think that security software may be causing the issue but if that was the case then the problem would occur for all users. The Network Connect connection is already set to ESP. I do need to do an upgrade to the latest version at some point, I just need to schedule in a time to do it. If I log onto the laptop I can log onto the SA as any user and start up Network Connect fine. I can also stil browse the Internet OK. However the problems all start occuring again when logged on as a standard user. I have tried uninstalling NC, then installing the Juniper Installer Service. I then tries to use Network Connect as a standard user and it installed fine but I am still getting the same problems. Do not know if this will help, if I do a tracert when I have connected to NC successfully the first device it hits has an address of 10.200.200.200 (which it thinks is the DHCP server), it then hits the corporate default gateway and then the corporate firewall and then various routers. If I try the same tracert when I have finally connected to NC as a standard user it gets to the 10.200.200.200 address and then no further? Thanks, D ... View more

Thanks for the reply. I have done a bit of testing on the machine and have found that the problem with Network Connect taking a long time to connect only seemt to happen if the user on the machine is not a local admin. I am an admin on all machines and when I try to connect it works fine. A bit bizarre, not sure if this is an issue that has been noticed before? Thanks, D ... View more