Recovered a snapshot. Followed this tutorials but still have the same problem: http://www.configrouter.com/junos-pulse-certificate-check-restriction-authentication-mobile-devices-364/ https://forums.pulsesecure.net/topic/pulse-connect-secure/17070-authenticate-users-with-their-certificate-only (list at the end)
... View more
Hello, iam currently trying to implement certificate authentification on a PulseSecure 8.3R1 (build 55339) Test Server. I've imported the selfsigned certificate to the truste client CAs. The certificate has been created on a test WinServer 2008 PKI and the cert got enrolled to the clients by GPO (meanwhile I also imported it manually about 100 times). I've also set up a host-checker rule to check for this CA, suprisingly this is working. But after the host-checker validation on my test-client it just shows "Missing vertificate. Check that your certificate is valid and up-to-date, and try again." even it should be checking for the same cert. I've set the AD/PKI-Server as Auth Server (while using it as LDAP-Login, this is working so the connection is fine) and defined it as authentication method on the user realm. The user realm is restricted to "Only allow users with a client-side certificate signed by Trusted Client CAs to sign in" (iam not checking for cn,dn attributes or else yet). My PKI issued a certificate to my client.
... View more