Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
since ‎10-29-2017
‎10-29-2017
AlanTen_
AlanTen_
New Contributor

Re: Passthrough Proxy Virtual Hostname certificate...

by AlanTen_ in Pulse Connect Secure
‎12-22-2011 07:45:AM
‎12-22-2011 07:45:AM
Thanks ^^ ... View more

Re: Passthrough Proxy Virtual Hostname certificate...

by AlanTen_ in Pulse Connect Secure
‎12-22-2011 06:49:AM
‎12-22-2011 06:49:AM
Thanks Zany, based on the my understanding I have given the client two options as to how to achieve his goals. At the moment they are using a Virtual Hostname with no cert to match the Virtual Hostname so the solutions I suggested are: The first of which is to set up a Virtual Port that can be used by the Passthrough Proxy instead of the Virtual Hostname and to then use a specific hostname cert such as passthrough.remote.domain.com or a wildcard cert based on the sub-domain *.remote.domain.com The second is to replace their current cert, remote.domain.com, with a wildcard cert for the domain, but since there is already a wildcard cert issued and used elsewhere in their organization I suggested that they get a cert from a different CA than the one who issued other wildcard cert. ... View more

Re: Passthrough Proxy Virtual Hostname certificate...

by AlanTen_ in Pulse Connect Secure
‎12-22-2011 02:47:AM
‎12-22-2011 02:47:AM
If I understand you correctly the certs are assigned per port (IP/Interface) and in order to present a certificate other than the certificate tied to the (physical) External Interface of the SA one needs to either replace the assigned cert with a wildcard cert or set up a new Virtual Port (vIP) and assign a certificate matching the desired FQDN of the to the new Virtual Port IP? ... View more

Passthrough Proxy Virtual Hostname certificate req...

by AlanTen_ in Pulse Connect Secure
‎12-21-2011 01:55:AM
‎12-21-2011 01:55:AM
Hello guys and gals, A client of mine is being rather persistent about using a FQDN in the cert for a Passthrough Proxy setup that makes use of the Virtual Hostname. Based on all the info I have gleaned regarding the certificates and the bits I know about using Passthrough Proxies, making use of Virtual Hostnames requires the following: 1. Either use a wildcard cert to match the domain, in the case of this particular client it will have to be, *.remote.domain.com, with the FQDN for the passthrough being, passthrough.remote.domain.com 2. Or if you do not have a wildcard certificate you can use another IP address and what I assume to be the full FQDN cert (this is something I picked up off of one of zanyterp's replies in another post). The problem I have is this, the client is being persistent in wanting to use a full FQDN for the passthrough cert with the FQDN DNS entry pointing to the SA. Unfortunately I do not know enough about the shortcomings Virtual Hostname nor exactly why this would not work and so I'm not able to answer the client's query to a point that he would stop and just generate a wildcard cert for the 'remote' subdomain as I have suggested. Would one of you be able to enlighten me as to why the above would not work? Regards, Alan ... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.