- Pulse Secure Community
- :
- About tgatewood_
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
since
10-29-2017
10-29-2017
tgatewood_
Occasional Contributor
11
Posts
0
Kudos
0
Solutions
01-04-2015
07:27:PM
Use the attribute username in the terminal services address like <USERNAME>.mycompany.com and for each user create a CNAME record for each user like johndoe.mycompany.com->the-user-pc.mycompany.com. You only need one realm and role for this.
... View more
10-31-2014
11:28:AM
Are you still having this problem? It seems to be happening to our firewall again...
... View more
10-21-2014
03:37:AM
You can still use the line for captive portal to force the unauthenticated users to the portal, but I wouldn't use the application services uac-policy to push resource access policies from uac.
... View more
10-19-2014
07:50:AM
With 12.1 you can get rid of the the permit application services line and use source-identity with normal SRX policies. I personally don't like the resource access policies that load from the UAC to SRX.
... View more
10-18-2014
02:25:PM
I recently saw the same thing, did you go to 12.1x44d40? I removed all the config under services unified-access-control, committed, then pasted the same lines back in and did another commit.
... View more
09-13-2014
08:09:PM
Is it supported to use the " Automatically when machine starts. Connection is authenticated again at user login." option for logging a user in when connecting via RDP? What it looks like now is the connection keeps the machine authentication, but the credential provider tie in isn't taking the user authentication. I can manually add a layer 3 UAC connection in Pulse and connect, but this would be tough for the users to add a connection if they are going to RDP to their desktop. Any ideas? Also, I map different realms based on username and password and certificate. That's why i think the option ' Automatically when the machine starts. Connection is authenticated again when the user signs in to the desktop." probably won't work for me. Thanks
... View more
12-04-2013
05:21:PM
How are concurrent users counted on MAG devices? Does it make a difference if MAC or LDAP or AD is used? Is it just for Pulse clients or any dot1x client?
... View more
08-01-2013
03:56:AM
Thanks for the response Kannan. Your solution looks like a static assignment by mapping these PCs to roles. This wouldn't scale to multiple machines with different VLAN assignments. In the example, I only said PC A and B but what if there were a hundred or even a thousand, how would I be able to do this dynamically based on data that is in the DHCP server?
... View more
07-31-2013
07:32:PM
I have a question about UAC that has been stumping me for a while. If I have multiple user VLANs and PCs configured with static DHCP reservations, is it possible to send the VLAN in the auth message to the switch somehow? For example, PC A is in 192.168.100.0/24 (VLAN 100) and PC B is in 192.168.101.0/24 (VLAN 101), both PCs have a DHCP reservation in their respective subnet.. Each PC has a machine certificate and will use that to authenticate to the switch port. The question is how do I tell the switch which VLAN to assign based in which address that PC is statically assigned to? In this case, it is a Cisco switch, Infoblox for DHCP and Juniper IC. Can IF-MAP or some kind of RADIUS proxy to the Infoblox server relay VLAN information while still using the machine certificate to authenticate? Thanks for any help you can provide!
... View more
04-24-2013
05:43:PM
Is there any way for an SA to send policy permits and denies to syslog? The SRX sends out all sorts of detailed logs, but it seems like the SA doesn't send a thing? It makes things really hard to troubleshoot when I can't see the SA blocking traffic. Thanks!
... View more
04-24-2013
09:34:AM
Has anyone out there had good luck finding a free antivirus product that works well with host checker? So far, only Sophos gets through the host checking and iAntiVirus, Avira, Avast I've had no luck with. Any tips on how to support or what to recommend to users running Macs? Also, are there any good options to ensure that Gatekeeper is running and actually doing some basic malware checks? It would be nice to see this on the Antivius or Antispyware checks and remediate if needed. Anyway, what do you use for your Macs and what do you recommend making sure your Macs are up to date and secure? Thanks!
... View more
Latest Tags
No tags yet
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy.
Pulse Secure has updated its Privacy Policy effective June 28, 2017.
