- Pulse Secure Community
- :
- About trasgu
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
since
10-15-2019
07-28-2020
trasgu
Occasional Contributor
10
Posts
0
Kudos
0
Solutions
07-09-2020
02:20:AM
I don't see any event related to printing. I was not using the Easy Print Driver but the specific HP printer drivers, however now to test I've enabled it on GPO (server side, "Use Remote Desktop Easy Print driver first"), and after gpupdate /force and also logout/login, I still see it's taking the previous HP driver instead of the Easy Print one. The Advanced tab is greyed out and I can't change anything :-(
... View more
07-06-2020
06:58:AM
Good point. I can print the test page. But nothing else, when I print anything from Word, Excel, PDF, etc, it does not appead on the server printer queue. Any idea why? Thanks
... View more
07-01-2020
04:47:AM
When I click on "print" I see the icon of the printer on the server, but nothing happens in the client.
... View more
06-29-2020
09:17:AM
Hi guys, I'me trying to make work remote printing from a Terminal Service Resource Profile. "Enable Java support" is disabled, and under Bookmarks tab I've enabled " Connect local printers". I have also installed the drivers of the local printer on the remote server (both are Windows 10). Upon connect, I see the local printer connected, but when I try to print something nothing happens. I've tried with Chrome and Internet Explorer. PS version is 9.0R3.4 Any hint? Thanks
... View more
05-14-2020
06:55:AM
Hi Ray, Much better now, thanks a lot. However, when I connect to our Skype for Business through the Pulse, it get's disconnected/reconnected every around 5-7 minutes when it reauthenticates, I don't know why. I guess this is not easy to troubleshoot, any idea welcomed. Thanks!
... View more
05-12-2020
08:20:AM
Hi Ray, In the Split-tunnelling policy, I have only the network 10.10.10.0/24 (under IPv4 Resources column, and the action 'Allow'), and also a couple of FQDN, none of them related at all with contoso.local. Thanks
... View more
05-12-2020
05:34:AM
Hi guys, We're facing a weird issue. Scenario: VPN tunneling enabled, split tunneling enabled, Route Precedence set as Tunnel routes, Route Monitor disabled. My testing profile's Resource policies for VPN tunneling: access control set to allow any (*.*), connection profile DNS set to 'Search the device's DNS servers first, then client', split-tunneling networks: 10.10.10.0/24. When I connect from Pulse Client on my laptop, I get the IP e.g. 10.50.50.50. Run route print and see that a new entry has been injected, route to 10.10.10.0/24, interface 10.50.50.50, which is totally fine. Then I ping a host of the remote network, e.g. 10.10.10.10, and get reply. If I run nslookup of that host, e.g. mail.contoso.local, I get the right IP, 10.10.10.10. But if I then ping the FQDN mail.contoso.local, it won't get a reply, and then when I check again the laptop routing table, I see that the route to that specific IP has been changed, now there is an entry towards 10.10.10.10 that drives the traffic to my laptop physical WiFi interface IP, instead of keeping the tunnel one. Any idea? Thanks
... View more
10-15-2019
07:53:AM
Hi, If i have understood it properly, the attacker might got the secret key for 2FA on Pulse´s side, so he can generate as many 2FA´s as he wants. Being so, what´s the point in revoke the tokens if they may generate them again if they have the "master" key? Thanks
... View more
10-15-2019
04:37:AM
I have just open a case, but i don't hope that helps actually, my experience with Pulse support is really bad, it's even hard to explain the issue to the technicians, even a simple one. That's why I trust more on the Community. The attackers have managed not only to capture some AD users credentials from the Pulses, but also to generate 2FA codes and use them... and we need to find out why. Not only because of us, but many hundreds of Pulse devices around the world may be facing exactly the same problem. Thanks
... View more
10-15-2019
04:02:AM
Hi guys, We have a Pulse that was running a version previous than 9.0R3.4, so it was affetected by several critical vulnerabilities like CVE-2019-11539 or CVE-2019-11510 We upgraded to 9.0R3.4 as soon as possible, however we are aware that during some days the attackers were able to access the devices, dump usernames and password (the primary authentication was through Active Directory), and they even hijacked live sessions. But now, the system is patched, and we still see something shocking. At least for one user, the attackers are able to login with his AD credentials (that's normal, as they got them during the attack by using the vulnerabilities above), but also are able to login on the 2FA authentication, the Google Auth OTP... I can't understand why. Is it possible that during that attack, the attackers were able to "dump" something from the Pulse, that allows them to generate 2FA codes whenever they want? how are those codes generated? e.g., if I have 3 Pulses connected to the same domain, the QR code generated will be the same once i login for first time in the 3 URLs? If i have the same username, like name.surname and i create an AD user and a pulse local user, the QR code will be the same? Someone who can shed some light on this and help me to find out how can they authenticate on 2FA would be highly appreciated.... Thanks in advance
... View more
Labels:
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy.
Pulse Secure has updated its Privacy Policy effective June 28, 2017.
