Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
since ‎10-29-2017
‎10-29-2017
dclouse_
New Contributor

Re: SAML Transfer failed:.... FAILURE: No valid a...

by in Pulse Connect Secure
‎10-31-2012 11:46:AM
‎10-31-2012 11:46:AM
Zanyterp,   I have one more question for you if you don't mind.   Can I ask why a sign-in URL can only point to a single realm, when SAML authentication is configured (see KB link below)?   We have realm authentication policies setup so even though one sign-in URL points to two realms (one of the realms being a SAML auth realm), through authentication policies it only evaluates to one realm? Shouldn't this meet the criteria of the sign-in URL only pointing to a single realm and thus SAML auth should work? What we are finding is that the authentication policies work, it only redirects the user to the appropriate realm as directed by the authentication policy, however, in the realm with SAML authentication, we find that we get Invalid/Missing Sign-IN URL errors. The other authentication realm works great. Also important to note that both work independently with their only sign-in URL if configured that way. It *seems* that Juniper only wants ONE realm (apparently it won't work with two realms, even if the auth policies make them mutually exclusive of each other so that only one realm kicks in for one sign-in URL). I'm trying to figure out why this won't work.... unless it should?   Hopefully this makes sense.   http://kb.pulsesecure.net/InfoCenter/index?page=content&id=KB22270&actp=RSS&smlogin=true   Thanks! ... View more

Re: SAML Transfer failed:.... FAILURE: No valid a...

by in Pulse Connect Secure
‎10-30-2012 02:21:PM
‎10-30-2012 02:21:PM
Thanks, it was a certificate/hostname issue. We got it to work, thanks! ... View more

Re: dynamic authentication

by in Pulse Connect Secure
‎10-17-2012 02:09:PM
‎10-17-2012 02:09:PM
Hi Ken -   We are also looking to do the certificate authentication absence/presence use case you mentioned above. Did you ever get it to work?   Thanks! ... View more

SAML Transfer failed:.... FAILURE: No valid asser...

by in Pulse Connect Secure
‎10-15-2012 09:52:AM
‎10-15-2012 09:52:AM
Hello,   We have Juniper SSL VPN 7.2 R1.1 (build 20761) running in a lab environment, where we are doing SAML 2.0 authentication testing.   Everything is working fine, except after authenticating to the IDP successfully, we get the message: " SAML Transfer failed. Please contact your system administrator. Detail: FAILURE: No valid assertion found in SAML response "   Not sure why Juniper SSL VPN looks at assertion in the SAML response as invalid. The clock skew is set for 3500 minutes, the time is synchronized between Juniper VPN and the IDP, the <..Not Before or NotOnOrAfter..> shows the correct validity date/times.   Any other ideas why the assertion would still be considered invalid? The only other thing we have set is the user name template, where we set <userAttr.enterprise_username> since enterprise_username contains the authenticated user ID.   Also important to note that the statusCode is successful, so the IDP is successfully authenticating the user. <samlp:StatusCode  xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol" Value="urn:oasis:names:tc:SAML:2.0:status:Success"> </samlp:StatusCode>   Any ideas or insight is appreciated. ... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.