Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
since ‎01-30-2017
‎10-29-2017
jyce
jyce
New Contributor

Role Mapping in User Realm w/ Authentication throu...

by jyce in Pulse Connect Secure
‎04-25-2017 03:36:PM
‎04-25-2017 03:36:PM
Hi Gurus, I want some users to connect transparently to our Gateway using a certificate signed by our private PKI. The problem, I'm facing is with the Role Mapping restriction where I want to use Group Membership. The Certificate Auth Server Looks for which value is: valiere.j-c@DOMAIN.tld I can alos use which value would then be: Valiere Jean-Christophe On the LDAP/AD Authentication server, I look for user entries using the following filter: samAccountName=, which value is: valiere.j-c I could also use cn=, which value would then be: Valiere Jean-Christophe The Group Membership filter is: cn= and Member Attribute is member. Finally. the Subject of my Certificate is as below: E = valiere.jean-christophe@domain.tld CN = Valiere Jean-Christophe OU = SIT OU = Administrator Accounts OU = ORG DC = DOMAIN DC = tld And the Subject Alternative Name is as below: Principal Name = valiere.j-c@DOMAIN.tld RFC822 Name = valiere.jean-christophe@DOMAIN.tld The issue is that I can't have a match between user and group membership because the CN of the certificate is "Valiere Jean-Christophe" and my samAccountName value is: valiere.j-c My guess is that I would have to change the certificate Subject, unfortunatelly, I'm pretty limited with the options of the certificate Subject & Subject Alternative Name. Is there any way I can request the CN of user from the samAccountName to then find if the user belong to the group ? Hope I have been clear :-) Thanks & Best Regards, Jean-Christophe Valiere ... View more

Re: Pulse Secure behind Load Balancer

by jyce in Pulse Connect Secure
‎04-25-2017 03:10:PM
‎04-25-2017 03:10:PM
Hi, Sorry for the very late answer. I had to change the from Layer 7 (HTTPS) to Layer 4 (TCP/443) and everything worked perfectly. Thanks & Best Regards, Jean-Christophe Valiere ... View more

Pulse Secure behind Load Balancer

by jyce in Pulse Connect Secure
‎01-30-2017 09:35:PM
‎01-30-2017 09:35:PM
Hi Guys, I have a cluster a of MAG-4610 in active/active mode behind a cluster of Load Balancer (A-10 Networks). I'm running version: 8.0R10 Acessing the Cluster of Pulse Secure through HTTPS directly or connecting using the Network Connect Client works perfectly. But trying to connect using Pulse Secure Windows Client doesn't. It used to work when the Cluster of Pulse Secure was connected directy to the firewall. Now that it is connected through our Load Balancer it doesn't work anymore. We use 2 Form Factor Authentication on the Pusle Gateway (Firts against LDAP and Second agains Radius/OTP). I noticed that accessing the Pulse Secure Gateway directly or using Network Connect provide me a "Web Page" asking for: Username / Static Password / One Time Password, while using Windows Pulse Secure Client, first ask me for my Username / Static Password and then prompt me for the One Time Password, On the load balancer, I just load balanced HTTPS protocol with source IP persistance. Does anyone have ideas why the Windows Pulse Secure Client doesn't connect any more ? It doesn't even prompt me for the Username / Static Password. Also notice that, I used wireshark on the Windows Client, and I can see the certificate being delivered to the Windows Client, and then nothing more. Are there any port to open on the firewall ? Thanks and Best Regards, Jean-Christophe ... View more
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.