I am a n00b so take this with a pinch of salt. As resource policies apply to roles, I would check your authentication realm settings to see if there are rules that map your users to a different role when they are connecting from their phones. If so, check that split tunneling is enabled under the VPN tunneling > Options page for that user role. Then check the settings under Resource Policies > VPN Tunneling > Split Tunneling Networks, and make sure that the policy that allows access to the new subnet includes the role that the phone users are mapped to. Hope this helps!
... View more
Hi folks, I have the Junos Pulse client v4.0 on Windows 7, connecting to a MAG-SM160. I've got it set to establish the connection " Automatically when machine starts. Connection is authenticated again at user login." Auth. server is Active Directory (2008 R2 DCs at 2003 functional level). First problem is that the machine connection always fails to authenticate. The log on the IVE says "Primary authentication failed for [domain]\[machine name]/[auth. server name]". The next line says "Login failed using auth server [auth server name] (Samba). Reason: Failed". The DC's security logs do not indicate any associated authentication failures. Second problem is that when the connection is established automatically at user login, if the client is not connected to a network, it just hangs at "Connecting..." until the user clicks cancel. Is there a way to set it not to attempt to connect if there is no network? Hopefully in both of these cases, I've overlooked something simple. Thanks in advance!
... View more