if you have not done so, please open a case with our support team so we can check on it. i think it may be a limitation of the software you have. ... View more

are you seeing failure on the pcs (remote service) or pps (on-lan) service? ... View more

i would recommend opening a case with our support team. what version of pcs software are you using? there are multiple issues related to disconnects resolved in later appliance and software versions ... View more

do you have the split dns option enabled on the other two? if you have not already done so, please open a case with our support team ... View more

the only way i know to remove it is to remove the anyconnect software. what version of pulse are you using? what version of anyconnect are you using? ... View more

on the new instance, do you have an allow defined? does it connect for any duration? ... View more

yes, that is correct: groups are not available with saml. to do group-based login with saml, you can set your authorization server to an ldap server so that groups can be sent; alternately, you can look to see if you can provide that information in an assertion/claim value no, each realm will need to have a unique idp configured ... View more

do you have an authcode/license for the psa5000? i would recommend reaching out to your account team for more information on licensing as they cannot be shared/transferred between appliances ... View more

thank you for confirming and then opening a case ... View more

if you have not already done so, please open a case with our support team ... View more

yes, that is by design not that i am aware of ... View more

i do not believe so as that is a version that is not supported at this time. you may be able to check the appliance at maintenance>system>installers ... View more

i have not seen that yet. did you leave the upgrade page while the upload was in-progress? ... View more

are they fronted by unique hostnames? ... View more

there are several options you can deploy, depending on what your security team says: - use certificate authentication - set a maximum session length longer than what you need monitoring - set a long idle timeout ... View more

@Gurdeep1: what version are you using? is it launching any application from the web? are you able to use the pulse client directly? ... View more

what is the error message you see in the user access log on the pcs? ... View more

if you are using the application launcher msi, yes, that is expected. if you install using the pulse client installer, are you seeing the pulse client install? ... View more

which msi are you using? i would not expect being able to launch the application launcher stand-alone; it is expected to not have a ui or anything to use ... View more

thank you for sharing ... View more

Thank you for the outline on this desired behavior. If you have not done so, please reach out to your sales/account team and let them know this information so they can get it to our product management team ... View more

The documentation should be at https://help.ivanti.com/ps/help/en_US/PDC/9.1R15/ag-9.1R15/customizing_overview.htm It can be found from the documentation site by looking at the Pulse Desktop pages. One of the links then has a link for customization. ... View more

You are welcome. I am not familiar with that log. Doing some searching, it looks like it is text-based log data that can be sent via syslog (similar to WELF). If that is correct, and what the customer is looking for you, you will need to create a custom filter to apply to the logs for the desired output using the variables and plain text options in the text field and then set that as the filter to use for syslog output. what i cannot find, and hopefully your customer will know, is if there is a standard set of data and form that needs to be sent or if it is a flexible format that you can add whatever you want in the order you want. i think the only standard item i see is that the separate is a pipe ("|") rather than hyphen you set the filter at: System>Log/Monitoring>logName>Filters you set the syslog data, including format, at: System>Log/Monitoring>logName>Settings ... View more

what is the cef format? if that is a binary form, yes, that cannot be done. if that is the name of a syslog output format (similar to WELF), which I think it may be, you should be able create this filter to contain the data you are looking to host, and in the order you want, at System>Log/Monitoring>Events|User Access|Admin Access>Filters and then setting your syslog output to use that filter. You can, if desired, also set this as the on-box display filter. For any questions or assistance, please contact our support team ... View more

thank you for sharing this as an option that has been seen to work for you i agree it is something that would be beneficial; i would suggest you reach out to your helpdesk and ask if they can put in an enhancement request through their contact with pulse secure/ivanti ... View more

is this an Mx-based system? what version of the software did they provide? ... View more

which version of the software did they provide? ... View more

they are aware of what is causing it; they are working on how to address the behavior ... View more