Hi ThairM,   ScreenOS Devices do not support SSLVPN, but SRX Devices do it (in a way more limited fashion then SA Devices can provide, exampe: NO Hostchecker)   Hope this helps a bit. Best Regards NULL ... View more

Hi there,   did happen to me also on VmWare, so it seems not to be a specific VirtualBox Problem.   Workaround: Downgrade to a earlier version and upgrade to the latest, dunno why this works but it does work. Downgrade can also be done on the same release Train.   Example: You're currently on 7.2R5 You want to 7.2.R6 Downgrade to 7.2Rx (1-4) Do the Upgrade again to 7.2R6 and it will work.   Hope this helps you guys Best Regards NULL ... View more

Hi cmishima,   it depends on how you can integrate your OTP Solution? Through: Radius Active-Directory LDAP ... ;-) I think you'll find a way. Best Regards NULL ... View more

Hi tgate,   Indeed it does matter if you're using SSL and or ESP, because ESP (IPSEC) is mostly based on UDP, which is by far faster then a TCP Connection (No direct packet acknowledge needed).   Hope this helps   Best Regards NULL ... View more

Hi Ambrose, are you using Credential Authentication or Certificate Authentication?   If you're using Certificate Authentication you could use the Client Certificate also for the Application.   Best Regards NULL ... View more

Hi Wilmer,   there are actually two possibilities :-)   the CA which signed the Certificate is itself signed by a trusted public ca (Browsers Trusted default CA's ) You have installed your company's CA on this private computer To verify these possibilities have a look at the Certificate Chain of this specific certificate.   Another possibility would be if you have trusted this certificate before (you'll see a warning in the certificate chain / certificate  details)   hope this helps Best Regards NULL ... View more

Hi rdit,   also on Juniper SA there has been a MGN Interface.. but only on larger ones ;-)   Have a nice weekend best regards NULL ... View more

Hi scoutt,   I'll give you a short hint on how you should integrate client CA's and so on ; ).   Have a issuing CA which does output client certificates  Have the CA (public part) available for upload. Upload the issuing Client CA (public Part) to Juniper SA Then there are different way's how you can enforce access through certificates Realm Base (Authentication Service) Role Base HostChecker Handling Certificate Authentication / Authorization: You can take every attribute from the client certificate for limiting access to realms / roles, a few examples: CN Date Departments Location IP-Address (assignment for Layer 3 VPN) Have a look to the Juniper SA Admin Guide how you can use / extract the Attributes   Caution: Not every device does handle intermediate CA's properly   Hope this does help you.   Best Regards NULL ... View more

Hi Lou,   behavior shouldn't have changed by changing only authentication server.   The most likely reason for it is that you did enable host-checker enforcement on realm-basis during the transition from local to ad authentication server.   If you aren't using OTC/OTP and or certificates (Hardware-Tokens) for authentication then I would strongly recommend to let the host-checker scan the machine prior to entering username/password.   Best Regards NULL ... View more

Hi jspanitz,   in your case I would highly recommend to set up a VMware DTE environment, push over the configuration and try iall specific uses cases out, it you're not experiencing any problems you could step over to the production system.     best regards NULL ... View more

Hi there, problem reappears on IVE 7.2R3 .... Pulse Version: Junos Pulse 2.1.4.20595 HostChecker configured as following... All Firewall Products checked All Antivirus Products checked MS operating Systems checked (WinXP Win7 WinVista, WinServer2k8) Patch Level Check for Windows .. Check for Flash Check for Adobe Reader Edit: Juniper SA 7.2R3 in combination with following Pulse Client: Junos Pulse 3.0.3.23179 does work. Edit: Juniper SA 7.1R10 in combination with the following Pulse Client: Junos Pulse 3.0.3.23179 doesn't work. So it seems both components (Ive and Pulse) have to be on the latest release train. Best Regards NULL ... View more

HI tspencer, it does depend on how you're installing Pulse, direct download through the Weblogin on Juniper SA or as a Package... If you're using packages choose the x64 version over here and it should work fine. Juniper - Support Site Best Regards NULL ... View more

Hi TheHorse13, don't know the specific search capabilites of IVE as i don't use them, if you do use a different Log Collector (STRM / Q1Radar / Arcsight / Splunk and so on). Limit the search to a 1 Week basis. Search with a Group by on Useragenst xyz (in your case iOS) then count the "Username". Hope this helps Regards NULL ... View more

The reason is way more easy to get it you know the portfolio of juniper products ;) Juniper tries to upsell into the mobile security suite, which does have a lot of various functionalities (which do need the functionalities/permissions specified by you). Backuping Device Tracking Device Monitoring Device Wiping Device AV Device and a lot more : ) Regards NULL ... View more

hi ruc, did test it the last 15 Minutes (SA 7.2R1.1) and it does work, BUG is fixed. regards NULL ... View more

Hi there, have had enabled all Firewall Products, and limited to a few AV Vendors (because we had the problem in prior..) also we do have enabled patch assessment for Win7/WinXP/WinVista and Operating System assessment. It's realy nice to see that fixed bugs (if you're right) like this horrible one won't get into release notes ... We are actualy using: HostChecker: 7.1R7 (build 20581)[7.1.7-20581(1716) Pulse: 2.1.3.18795 Regards NULL ... View more

Hi there, how is it possible that juniper still did not fix this issue? It's about year and a half that a case regarding this issue had been opend @ JTAC :'( (and Closed by jtac..) Still no Fix implemented in Pulse - any update on this? regards NULL ... View more

Hi zanyterp, it seems that the release note does not include the "new functionalities"... :/ Like: native Layer 3 VPN on Android 4.x upwards devices Hostchecker for Android Junos Remote Access Suite - Whats New (SA / UAC / MAG / PULSE) LINK Regards NULL ... View more

Hi there, Junos Pulse 3.2.0.19739 has been released to android store Release Notes not yet published on: Juniper Support Site - JunOs Pulse Have a nice Weekend regards NULL ... View more

Hi there, Junos Pulse 3.2 should be rolled out during the next comming weeks. It will support L3 VPN on all Anroid Devices which are running Android ICS 4.0 and UP regards NULL ... View more

Hi Zanyterp, would be cool if Juniper Networks does provide the specific Samsung Release Number so enterprises do know if their workforce is ready or not (problem could be with ISP who do not publish that quickly the new releases). This information should eliminate a lot of JTAC Support query's and or in-house Enterprise support. Regards NULL ... View more

@zanyterp :-) KB22212 has been published It seems that L3 VPN is available for (Reference - Link): HTC Thunderbolt Samsung Galaxy S Samsung Galaxy S2 Samsung Galaxy 10Ó Tablet Samsung Galaxy Note Google Nexus (S) HTC Incredible S710 regards NULL ... View more

@zanyterp: would be cool if you could publish this KB :D regards NULL ... View more

Hi wendohw, you don't have too look for support by Juniper SA if you can integrate the solution by one of the available authentication Servers, for example: Use Radius Server (a lot of 2 Factor Authentication solutions do support Radius authentication have a Radius Server integrated so you can use everyone of them, even if it's not listed as "supported") don't forget that. regards NULL ... View more

There's no problem with it :-), works like a charm! I'll let you know tomorrow how i did it, if not someone else does it before ;-) regards rm ... View more

Hi Jellekamma, if you're using Juniper RDP proxy you should permit local printers, it's a specific setting. Hope this was the missing part ;-) Regards NULL ... View more