Ok; host checker would prevent anything tied to a specific user from being logged, depending on how you do it, yes. Good luck!....hopefully the upgrade goes better for you this time ... View more

I have this list for clean Juniper component: 1. Delete cookies, temporary files and prefetch files from the client PC. 2. Delete the Java files from Control Panel->Java->Temporary Internet Files->Settings->Delete Files. 3. Delete the JuniperSetupClientControl Class files and JuniperSetupClientControlXP Class from Control Panel->Internet Options->Under Browsing History Tab->Settings->View Objects->Selected the above two files and delete the same. 4. Go to Control Panel > Add/Remove Programs > Remove all Juniper Programs 5. Go to Control Panel > Internet Options > General > Settings > View Objects > Delete all the ActiveX Components installed by Juniper 6. Then go to C:\Documents and Settings\<username>\Application Data\Juniper Networks\setup\ and run uninstall.exe (path might differ for Win-7 OS) 7. Go to C:\Documents and Settings\<username>\Application Data\ and Delete the Juniper Networks Folder (path might differ for Win-7 OS) 8. Go to C:\Documents and Settings\All Users\Application Data\ and Delete the Juniper Networks Folder (path might differ for Win-7 OS) 9. C:\Program Files\and Delete the Juniper Networks Folder Win-7: C:\Users\username\AppData\roaming\Juniper Networks\logging\debuglog.log and C:\Users\public\Juniper Networks\logging\debuglog.log 10. Go to Device Manager/Click View on top/Select Show Hidden Devices/Go to the Network Adapter/Delete the Juniper Networks Virtual Adapter. 11. Also from the registry: HKEY_LOCAL_MACHINE\SOFTWARE\Juniper Networks and remove the Network Connect from the tree. HKEY_CURRENT_USER\Software\Juniper Networks and remove the Network Connect from the tree. 12. Disable the " Wired Auto Config service" on the machine under services.msc and also keep the driver signing to Ignore under System properties->Hardware->Driver Signing->choose Ignore - install any software on the machine. 13. Turn off UAC(User Account Control) on Windows-7 or Vista PCs. 14. Run CCleaner.exe if you have one. 15. Reset the Winsock and TCP/IP stack of the client machine by using the following commands from the command window: Note: The following command should be run only if the IP address to the PC was assigned by DHCP server. If it is Static IP, kindly make a note of IP information and run the following commands. type netsh int ip reset reset.txt and hit enter key. Then type netsh winsock reset and hit enter. 16. After the above steps, please reboot the machine. I'm interested for some of your script which automates this (I'm bad at programming). If someone agrees to share, let me know. Regards, Vincent ... View more

In a case much like this, I set up a role-mapping rule to map users with a specific agent string to a role with only default session and UI settings and no resources. Of course, I specify that the processing of role-mapping rules should not stop with that assignment. So, if you had a role-mapping rule which mapped any user with an iPad agent string to role "iPad User", you could then search using Splunk for messages with that string in them. If you only select the "authentication successful" or some other message that would occur only once per session, you can count them to get the number of iPad sessions, and count unique user names to see how many users logged on with iPads that week. Ken ... View more

It is available at: http://www.juniper.net/support/products/esap/ Hope that helps. ... View more

Yes! We get this all the time with Sophos.   In the past it had sometimes been due to the fact that the OPSWAT was checking for a version that Sophos hadn't yet released!     Now happening on our SSL VPN with 7.2R4 and Sophos v10x   Grrreat! (NOT)   It's a common reocurring problem. ... View more

There is no exclusive clean up utility as such for Host checker uninstalling application from Add/Remove programs should be good enough for a new 7.x installation. ... View more

No, this is no longer true.  All Samsung devices should support L3 tunnel.  You can download a Junos Pulse Samsung client from their app store which supports L3.  Other vendors have been adding support as well. ... View more

The SA6000FIPS is not able to create a 2048bit CSR key; the other hardware (non-FIPS) are able to do this beginning in 6.5. Please see the release notes/admin guide for more information. ... View more

I have seen that before. And if the previous method of fulling uninstalling didn't help the profile is what I had to do also for a user. Hope this helps. ... View more

We are using 1.4.9 which re-introduced problems seeing FreeAVG 8.5. Hooray!! We are using Juniper's canned AV checks along with the auto signature update feature when a user has an AV client with an out of date signature. None of this works though. I've seen others post similar complaints starting with the 6.2 build and JTAC confirms that there are, "...a number of issues with hostchecker that they are aware of...". Funny thing is that before I went ahead with this upgrade, I was told that there were no problems at all. That was a week before I pulled the trigger on the upgrade. ... View more

If you are using Windows Server, install Certificate Authority Services on the domain controller. This will allow for LDAPS to be used against the DC. ... View more

This should be possible if the host check is only evaluates on realm-level and enforce on a specific role for Win OS.  This in a combination with role-mapping with useragent string maybe does the trick? --------------------------------------------------- Please mark this post as 'accepted solution' if my input answers your question! A kudo would be nice if you think I deserve it. --------------------------------------------------- 2 A/P clustered 6500, 7.4R9.1 2 A/P clustered 2500, 8.0R3.1 LAB ... View more