- Pulse Secure Community
- :
- About Ruud_
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
since
10-29-2017
10-29-2017
Ruud_
Contributor
20
Posts
0
Kudos
1
Solution
06-07-2010
04:34:AM
We have now exactly the same msg in the event log. We have changed nothing ourself. What could be the problem? regards, Ruud.
... View more
09-10-2009
05:49:AM
After some testing I found the problem (Hope this is the same problem for you Player). We have Realms with several Roles. This could be Citrix (WSAM), Terminal Services, Etc. When a user has access to a Citrix Role and a Terminal Service Role, the Terminal Service freezes when trying to connect. When I remove the Citrix Role, the Terminal Service session works fine. I am not sure it is related to WSAM or Citrix... In release 6.2R1 this worked together, but it seems that in release 6.5R2 this is not the case. In the release note I found the following: WSAM is not supported on multiple Terminal Service/Citrix sessions running on the same Windows server (419891) I hope this helps. Ruud.
... View more
09-08-2009
05:15:AM
I have no workaround for this. Since I update from 6.2R1 to 6.4R2, I have several problems with vista 32bit which I can't fix. - It needs 20 to 30 seconds for SAM to connect! (normally it happens simultanious) - Once connected with SAM, I cannot start any terminal service session. It starts but freezes trying to connect. When I check our network firewall or with a policy trace, no traffic comes in. I also tried with disabling the Vista firewall, but also no solution... This is a very frustrating problem, So any workaround, hint, solution is welcome. Thanks in advance, Ruud.
... View more
09-08-2009
12:24:AM
Hi Player. I have exactly the same problem until point 3. That I need to test, but it can be a temporary workaround. Our IVE is 6.4 R2. Any help is welcome. Thanks in advance, Ruud.
... View more
05-18-2009
12:53:AM
Hi, We have some customers using "Norman Virus Control 7.10". If they want to use VPN, the host checker fails. It gives following error: Norman Virus Control 7.10 does not comply with policy. Compliance requires real time protection enabled Is this a known issue? Will this be supported next ESAP release? Any help / feedback is welcome. Beste regards, Ruud.
... View more
12-20-2008
04:16:AM
Version: 6.2R1 (build 13255) Going to ESAP 1.4.4 solved the issue for the two customers who experienced the problem.
... View more
12-17-2008
02:48:AM
I found the solution myself troubleshooting this issue. Seems that this was conflicted by ESAP file version 1.4.3. Because when I did a roll back to 1.4.2 the issue did not occur. Later I installed version 1.4.4 and there the issue didn't occur either.
... View more
12-17-2008
02:19:AM
Hi, I have now two customers where the host checker policy fails with no reason at all !!! When I disable the host checker, they can authenticate, but it always fails when I enable it. I am also 100% sure that they meet the requirements. (Virusscan and firewall) This is the message I receive in the log: Host Checker policy 'GENERAL' failed on host xxx.xxx.xxx.xxx . Reason: ''. Some additional information: - When I remove all rules in the host checker, it still fails ! (how can it fails, if nothing needs to be checked) - When no host checker is assigned, it works. This issue is really annoying and need to be solved asap... Any help is welcome. Thanks in advance, Ruud. Message Edited by Ruud on 12-17-2008 02:38 AM Message Edited by Ruud on 12-17-2008 02:53 AM
... View more
11-18-2008
06:34:AM
I have found a work around for this issue. When I removed and added 1, the problem moved to another role. But when I removed all the roles, and added them all together add once, this issue was solved and the resource profile was assigned to all of them. Ruud.
... View more
11-18-2008
05:51:AM
Hi all, I have some strange behaviour. I have made a terminal service resource profile which is applied to four roles. The strange part is that it only counts for three of them. One is randomly not used. The checkbox terminal service is checked, but there are 0 sessions (which should be one). When I remove this role and add it again to the resource profile, then it is fixed but randomly another role has this behaviour (checkbox terminal service is checked, but there are 0 sessions). Anyway, now I have the problem that I can't assign more the three roles to a terminal service resource profile. I have no clue if this also counts for other resource profile resources. Anybody knows if this is a known issue or is there a limit to the amount of roles you can assign to a resource profile? Any feedback is welcome. Thanks in advance, Ruud.
... View more
11-17-2008
12:54:AM
Hi Christopher, Thanks a lot for the feedback ! Regards, Ruud.
... View more
11-07-2008
07:01:AM
A client of ours uses Bitdefender Internet Security 2009. It seems that this is not supported yet it the latest ESAP. Where can I inform or can someone tell me when this will be supported. Thanks in advance, Ruud.
... View more
10-24-2008
05:33:AM
I found the solution thanks to your help. I've done a "Policy Tracing". There I saw that "Selective Rewriting" was used. The strange thing is, that only one "Selective Rewriting" policy was defined and it was not assigned to the role for owa. But somehow the OWA role used it, even it was not assigned to it. Nevertheless, I've made a new policy for "Selective Rewriting" and assigned it to the role. Afterwards it worked like it should! Thanks for the tips and the help. I learned a lot troubleshooting this problem ! Ruud. Message Edited by Ruud on 10-24-2008 05:34 AM
... View more
10-23-2008
07:16:AM
Have you done any troubleshooting by doing a policy trace on that user login? Source IP at the realm or role level is something that is checked when a user logs in. I have done a "User Access Log". I can login fine. But when I click on the link, I receive the message, "This page cannot be displayed". Nothing is shown in the log. Correct me if I am wrong, but Source IP address is at role level, it can't be define at realm level. I use several roles for one realm, each with the same Source IP address. You said that you use source IP at the role level. So as an example - if you had a "deny" and did a policy trace you would see the user restricted when the logged in. I don't see anything of a deny in the log file, that is the strange part. Is there anything in the event or user log files. I am assuming that if you turn "off" source IP the user logs in and then can access the page just fine? That behavior is strange as source IP should not affect an individual bookmark access. When I turn off the source IP, I still have the same problem. What I found strange is that I don't see any logging in the firewall. I have a bookmark to outlook web access. To reach this bookmark, it needs to pass the firewall whith as source the Internal Source IP and as destination the server of Outlook Web Access. But I don't see any logging...
... View more
10-23-2008
03:10:AM
Hi, I have configured a "Web resource" for Citrix and Outlook Web Access. The role that uses these resources have a Source IP address assigned. On the firewall I pass everything from that source IP address to the OWA and Citrix server. Nevertheless this setup is not working, I receive 'Page could not be displayed" error. I really do not know what I could have done wrong... Do I also need to configure SAM or something else? Greets, Ruud.
... View more
10-06-2008
07:02:AM
Hi, I have a "security" question regarding the use of internal virtual ports. Now I use for each role a separate Source IP and use this IP in the firewall so that the specific traffic can go through.. But this means I can't use multiple roles for one realm because a realm only takes use of the first Source IP Address and therefore besides the first role, all other roles are blocked and I can't use them. To solve this issue I would like to use one Source IP address for all roles used by a department. This way I can assign all the roles to the realm of the department. This means also that for one source IP address I need to allow more destination IPs and Ports in the firewall then in my original set up. My question: Is allowing more traffic for one source IP address on the firewall a security risk or can it be better spread by using more source IP addresses? I hope my question is clear, if not do not hesitate to ask. Greets.
... View more
10-06-2008
05:28:AM
Hi, A customer of ours has G DATA Antivirus 2008 and G DATA InternetSecurity which is also supported by the latest ESAP version (1.4.3) When he tries to make a VPN connection, he always fails the host checker, with as reason that the firewall and virusscan is not supported. He also mentioned that he has this behaviour with other customers who uses Juniper VPN. Are you aware that this is a known issue or do I overlook something? Best regards, Ruud.
... View more
10-06-2008
02:50:AM
I have realms with several roles where each role uses a different source IP. I noticed the following in the user guide: If an end user is mapped to multiple roles and the IVE merges roles, the IVE associates the source IP address configured for the first role in the list with the merged role. Is there really no way to use multiple source IPs in one realm when I merge roles?
... View more
10-06-2008
12:48:AM
Hi, We have updated our IVE from 6.2R1 to 6.4R2. Since then on most PCs Citrix sessions are timed-out after 30 minutes. The Idle timeout is set to 60 minutes. Is this a known issue? Any help or feedback is welcome. Note: Seems to be WSAM that disconnects after 30 minutes. I set the sesion timeout and idle of that role higher then 60minutes. So I don't understand why it disconnects earlier. Best regards, Ruud. Message Edited by Ruud on 09-09-2009 04:33 AM
... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy.
Pulse Secure has updated its Privacy Policy effective June 28, 2017.
