- Pulse Secure Community
- :
- About eng_mahmood48_
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
since
10-29-2017
10-29-2017
eng_mahmood48_
Contributor
25
Posts
0
Kudos
0
Solutions
07-31-2012
03:29:AM
Hi Raveen can you provide me for a configuration example or a guide for this. Rgs Mahmoud
... View more
07-31-2012
01:47:AM
Hi Raveen the authorization type am looking for is like; Some users have privilege to perform certain commands, and some users have certain level of privileges (1-15). so is this supported under return attributes policies? Rgs Mahmoud
... View more
07-31-2012
12:44:AM
so we can use MAG instead of ACS for authenticating network devices, is it the same as authenticating normal users by creating realm and roles then to create role-mapping rules? also what about authorization; can we create authorization roles for the network devices, like to create a downlodable access list? Rgs Mahmoud
... View more
07-29-2012
01:58:AM
Hi Can MAG replace Cisco ACS for authenticating and authorizing network devices like routers and switches? Also can we use it to authenticate VPN users? Rgs Mahmoud
... View more
06-04-2012
06:51:AM
Hello Raveen thank you for your posts, i tried what you suggested but i got the same responce. so why the switch is refussing the EAP messages? Regards Mahmoud
... View more
06-04-2012
04:47:AM
I was able to collect the logs from MAG, OAC, and the captured traffic from the switch and at the same time. attached are the logs Regards Mahmoud
... View more
06-03-2012
03:17:AM
Hi attached is the OAC log file. Regards Mahmoud
... View more
05-28-2012
11:31:PM
the clients switch ports assigned a static VLAN and the MAG configured for a returne attribute to open the port if client authenticated. Regards Mahmoud
... View more
05-28-2012
05:35:AM
Hello Attached is the TCP_Dump file. Regards
... View more
05-23-2012
05:45:AM
Hi i upgraded to 4.2 and i got the same behaviour. for the MAG logs; i can see that the users authentication succeeded but the agent is displaying authentication failed and requesting authentication again i think its Huawei switch issue, so wonder if any one had the same case. Regards Mahmoud
... View more
05-20-2012
10:00:AM
Hi i have MAG2600 and want to setup it as a L2 802.1x with Huawei switch, and asking if it supported by the MAG (IC 4.1r1)?? i was not able to find Huawei in the list of supported Vendors on Radius client configuration page! scenario: the Huawei switch configured per to the Huawei admin Guide, but when connecting a user (having Odyssey installed and configured) to a dot1x enabled port, the agent asks for username and could not connect to the controller. but if i connected the user to a non dot1x port then i got authenticated and connected to the controller! Regards Myasin
... View more
01-07-2012
02:47:AM
so what i understood from you, that for the hostchecker policies to be considered in roles assignments, the custome expressions have to be configured in the role mapping roles? also i want to check the "stop processing roles when this role matches" option, so i have to configure the custom expressions in the role mapping, else the roles mapping will be based on the users authentication and will not consider the host checker policy, is this right? Thanks Kannan
... View more
01-06-2012
08:17:AM
Hi Raveen do you have an example or some documnets about this? can i use the custom expressions to match both the username and the hostchecker policy? also what about the dynamic policy evaluation, it didnt work using the above settings, do you have any comments? Thanks
... View more
01-06-2012
08:08:AM
Hi Raveen is it required to add the wireless SSIDs either to the IC Role configuration or to the agent software? or it will work whatever was the SSID you connect from (of course the SSIDs will be defined in the WC or AP)? Thanks
... View more
01-05-2012
05:06:AM
Hi i have two roles; users and quarantine, there is a host checker policy assigned to the users role. users whom didnt comply to this policy have to be assigned to the quarantine role. i configured the following: - created the two roles. - configured the role mapping for the locally configured users to be assigned to the users role, and checked the stop roles matching check box. - configured the role mapping for all users (*), to be assigned to the quarantine role and loacte it below the users role. - enabled the dynamic policy evaluation in the Roles Realm. the problems are: 1- users whom didnt comply didnt assign to the qurantine role. i unchecked the stop role matching in the users Role, then the not complied users assigned to the quarantine role (is this configuration right?) 2- after i did the above, the users whom assigned to the quarantine Role (due to the not complied policy) and fixed their problems, didnt reassigned to the users role, why? although i configured the dynamic policy evaluation!! Thanks
... View more
01-02-2012
11:42:PM
Hi but it dont refer to the wireless controllers configuration part. and there are no description about the wireless connection process. Thanks
... View more
01-02-2012
11:18:PM
is there a difference between the machine authentication and certificate machine authentication? Thanks
... View more
01-02-2012
01:36:AM
Hello i will use the assignment of remediation VLAN from the IC to the users whom didnt pass the policy check. if the Certificate Machine authentication is the best, then how it works.? - what about Gina, do you recommend it? Thanks
... View more
01-01-2012
07:58:AM
I have the below queries for wirless deployment in IC; 1- what are the steps in which the wireless user pass through from the first connection to the wireless AP to the final step in IC authentication? 2- what is the required configuration in wireless controlleres? 3- what is the required configuration in the IC for the wireless? Thanks
... View more
01-01-2012
07:53:AM
i have the below queries about the UAC deployment for AD users: 1- what is the best solution for the L2 802.1x Active directory connected PCs, since they will not have access to the AD server before user login (No IP address), is the Gina or the Machine Auth the best for this scenario? 2- is there limitations for GINA in windows 7? 3- what is the required configuratio for machine auth in the IC itself? Thanks
... View more
02-28-2011
03:43:AM
in addition to the above, i have the below question: - now if the plan to install the Odyessy is by informing the users to connect to the UAC site and then the agent to be installed automatically. the question is: now the 802.1x is enabled on the switch and the users will have an access to anything without authentication, so how they can access the UAC to install the agent? Thanks
... View more
02-28-2011
03:27:AM
Hi raven & Stan sorry i mean the IE (infranet inforcer). is there any way to install a certificate without purchasing a certificate from a CA?
... View more
02-28-2011
03:23:AM
Hello Stan thank you for the reply. i already use the AD authentication server, and the role mapping is based on the users group membership, so what are the chages i have to do on the UAC to configure the machine authentication, like changing the role mapping (its now based on the group membership) or anything else? do i have to build a new machine account on the odyessy agent?
... View more
02-23-2011
03:50:AM
Hi All 1- does the IC connectivity with IF requires a Certificate purchased from a CA, or using the self signed certificate is enough? 2- I used the Openssl and was not able to create the certificate, is there a guide?
... View more
02-22-2011
07:25:AM
Hi i am going tpo deploy UAC and have some questions: 1- is it required that the 802.1x to be enabled on the client PC, or the OAC is enough? 2- if the user is a member on the domain, and the 802.1x is enabled on the switch port, then he will not have an access to the domain controller to sign in using his domain account, because he still dont have an IP, so what to do?
... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy.
Pulse Secure has updated its Privacy Policy effective June 28, 2017.
