Sounds like the realm you are using is setup for secondary authetication.  ... View more

Wow this is pretty pathetic if you ask me.   "estimated release date for the fix is between 12/31/2013 (PST) and 1/3/2014 (PST)."   We have had to disable hostchecker entirely, toss the security out the window for a few days. ... View more

I created a TAC case:   Here is the latest from JTAC.   I have created a PR for you case. I am discussions with the development team. I will provide you next steps once I have confirmed them with engineering. Thanks ... View more

I am glad to see Chrome also being added for support.    I think they are ditching NC on MAC X all together due to JAVA issues. I wish we had known this a little ahead of time as we are totally NC and have some MAC users that can't connect without manually loading Pulse. When it is manually loaded on OSX  it works great however now we should move to Pulse globally and that wasn't in the plans.... ... View more

Two options:   Use network connect or pulse under applications instead of using your browser which then bypasses Java OR install Java update 13 that make vpn fully functional. ... View more

Well that is a major bummer, I was hoping FF would save the day. I did log a ticket a bit ago with Juniper. We shall see what the latest is. ... View more

I just found this: Possible work around   Note one of the big things is that it says Apple is not blocking Java on Firefox. I have not personally tried this. Please note if it works for you. ... View more

I am wondering the same thing. Starting to become a major problem here. ... View more

+1   Here we use vpn.domain.com for desktops with hostcheck and vpn.domain.com/ipad with no hostcheck (cause mobile devices don't support it) so we use browser restrictions on the /ipad url so desktop don't try and sneak in that route.   ... View more

Updated info from Juniper.   http://www.juniper.net/techpubs/software/ive/releasenotes/j-sa-sslvpn-7.3R1-supportedplatforms.pdf ... View more

So far it looks like Windows 8 support by Juniper is equal to a D- No official statement of support that I have seen. 7.3 might support it but Juniper can't seem to release the "what's new" document for the software. Also who wants to go to a .1 rev of software just to support a new clients OS. Cmon Juniper 7.2 is barely out of the early Rev stages and now we should start with 7.3 ... View more

If you set the profile to search device dns first, this should take care of resolving "example.com" through the VPN,        Mine is set to search the device first but the MAC doesn't listen to that setting. It uses its local DNS first. PC's listen to that rule perfectly but not MAC's.   ... View more

We have the same issue with our MAC's. Windows machines listen to the search IVE DNS first. MAC's do not. Any fixes would be appreciated. Split tunneling is not a great idea for us however. ... View more

I see it now. Thanks! ... View more

I would say you nailed it. That is pretty much the usual routine around here. If AVG free is broke we tell them to install Microsoft Security Essentials and vice versa. Symantec is our corperate antivirus and that has yet to have a hiccup so that is good. The previous one are having to do with home pc's.   We kind of roll with it I guess but it does get frustrating. ... View more

I don't see 7.2R4 on the downloads of Junipers website just 7.2R3   Did you get that version from tech support? I need to do an upgrade this weekend for security however I don't want to do another next week just to add Mountain Lion support.   Thanks ... View more

I have tested this and it appears to be resolved. See below. The latest ESAP version just released should contain the fix for the Avast AV 7 products. Here are the relevant links. Software Download: https://download.juniper.net/software/ive/releases/esap/2.1.7/j-esap-2.1.7.pkg Checksum: 34D3F2121029B81300C27C17F6B10BD7 *j-esap-2.1.7.pkg Release Notes: https://download.juniper.net/software/ive/releases/esap/2.1.7/j-esap-2.1.7-releasenotes.pdf ... View more

Here is the latest from my JTAC case. 05/10/12 09:39:53 Hi Jason, Another update. There appears to be a problem with the method that Avast has provided for Opswat to run the check. Opswat is working with Avast to resolve the issue. I will update you as soon as there is more to share. ... View more

FYI 2.1.5 was released yesterday with the fix included. ... View more

I changed it to the following and it seemed to resolve the issue. *iPad* *Iphone* *iPod* Also added android 4.X acces *Android* Life is good again. ... View more

This was a real bear to get up and running a year or so ago. Just make sure once you have the AD side setup and an ip address in the users AD profile that you have a NC Connections Profile setup in the IVE pointing towards the correct ROLE for that user. As well in the NC Connections Profile under "ip addresses" make sure you have the <userAttr.ipPhone> statement in there. ... View more

Anyone know if the pulse client has added a new user-agent string with the release of 3.2.0.20175? Clients break immediatly when moving to this client. If I remove the browser restriction they get right in. Gotta be a new string. Now if I could just figure out what it is?!?! ... View more

Doesn't work for me. ICS 4.04 on a moto xoom2 and as soon as I hit connect I get "file error Ð PleaseWait-mobile-webkit.thtml: not found" Supposedly this is fixed in Pulse client 3.2 per KB but that is what I am running and no go. ... View more

@-red- wrote: You should be able to modify your existing policy. I ended up creating a new check to look for the msseces.exe, added it to my existing ESAP based AV policy, then changed the require option to either "Any of the above rules" or if you have additional rules you may want to apply, then use Custom and do something along these lines "allow=MSE-v4 OR Preferred-AntiVirus "....... This did the trick for me. I do wish Juniper would have proactively sent out an alert on this when the calls started pouring in. Thank -red- Also this is the latest from my Juniper contact on this. We currently have a ticket open for MS Security Essential 4.0. We expect to release support for it in the IVE sometime in June or July. Here is a KB for a workaround: http://kb.pulsesecure.net/KB22348 The KB is a general one for un-supported product. Please use the below mentioned process name instead of the one in the KB, and that should be it. Provide the workaround to do a check for the process "msseces.exe" ... View more

@ceb1969 wrote: Just an FYI JTAC informed me there have an internal ticket to get MSE 4.x supported but as a workaround I had to create a process check rule in my AV policy to look for msseces.exe and this worked. Is there a KB for this? I want to add that but I do not want it to break my other users. Thanks! ... View more

FYI, Created a new JTAX case for this. Will let you know what shakes out. Real time protection error here with Win7. ... View more

I am running ESAP 2.1.3 and still having an issue with Avast 7.0 is Juniper aware that it is still not fixed or do we need to open for JTAC cases? Thanks ... View more

@haas wrote: Anyone know if the pulse client has added a new user-agent string with the release of 3.0 here in late October? I am having problems with this version connecting and I am using browser restrictions. I have been successfully using the two listed below and have had no problems till now with an ipod touch and 3.0 of the pulse client. *JunosPulseiPad* *JunosPulseIphone* Thanks Here is the other one I was missing. *JunosPulseiPod* ... View more