- Pulse Secure Community
- :
- About PatrikL
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
since
10-10-2017
11-17-2021
PatrikL
Occasional Contributor
11
Posts
1
Kudos
0
Solutions
08-25-2021
12:23:AM
No, I can't see that the firewall is dropping it. I know the thread is a bit old but we still have this problem.
... View more
03-24-2021
09:23:AM
We recently updated to PCS 9.1r11.0 and after that we see that when we use the terminal services client for connecting to a windows hosts thru rdp the connection breaks when we copy a file from the local host to the terminal one. If we connect with pulse secure client instead and use windows rdp client it works, so it has something to do with the terminal services client. Any suggestions? I cant get a hold of an older version of the terminal services client to try with unfortunately.
... View more
02-17-2021
01:51:PM
1 Kudo
Yeah, that was my thinking too. Problem is that I'm not the one in charge of the domain/azure cloud. Ofc I could talk to management to get something in place but it will take time so I was hoping for a easier solution :)
... View more
02-11-2021
01:06:AM
Hi! I'm wondering if anybody has a suggestion how to only allow workstations that is installed and a part of our corporate domain/azure. First my thought was to check the registry for which domain the computer is joined but that "failed" since it is connected to an azure domain which then also creates a registry entry but the "hives" name is diffrent on every computer. Also I was thinking of a computer certificate but that isn't present so I think that would be a harder "nut" to crack. So any other suggestions or ideas? //BR Patrik
... View more
08-22-2019
06:30:AM
I'm trying to set up a realm on my pcs3000 that should only allow users with a particular certificate (yubikey loaded with a certificate). I've added the root and intermediate certificate to the "Trusted Client CA's" and I've choosen "Only allow users with a client-side certificate signed by Trusted Client CAs to sign in. To change the certification authority, see the Trusted Client CA page." on the realm. Loaded the Yubikey with the certificate, when I try to logon I'm prompted for the pin for the smartcard and after I've typed it in, it redirects to a page ang gives me "Can’t connect securely to this page" (Edge, in chrome it gives me page missing) when refreshing the page it says "Missing certificate. Check that your certificate is valid and up-to-date, and try again." The certificate is issued as an "smart card" certificate. What have I missed? I'm running 9.1R2 (build 2331)
... View more
10-18-2017
05:30:PM
I can see that the handshake comes to our AD server and it is indeed SSLv2 initail handshake as you mention and then it tries to init tls 1.2 but thats where it fails. Our AD server sends a RST and I guess it's because the initial handshake is sslv2? //Patrik
... View more
10-16-2017
05:24:AM
Ok! Do you know if there is any other way to make more secure? //P
... View more
10-11-2017
01:57:PM
Thanks for the reply. Ok so there is no TLS 1.2 support for START TLS? I get the same on LDAPS so guess it is the same there?
... View more
10-10-2017
09:05:AM
Hi! We have a MAG-4610 (8.2R6). When I set the setting on "auth servers" to use LDAP STARTTLS it will just say "LDAP Server is unreachable" but if I use Unencrypted it will work. So I installed wireshark on our domain controller/ldap server and when the "Client Hello" comes it uses SSLv2 protocol so I guess thats why it says "server unreachable" since we are only allowing tls 1.2 What do you think? any suggestion? //BR
... View more
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy.
Pulse Secure has updated its Privacy Policy effective June 28, 2017.
