Hi Ben,
Juniper has moved away from the Pulse Secure Client to a Juniper Secure Connect Client. This Client is available from the Juniper Downloads Portal (granted you have a support contract).
Some stanzas in the Juniper Documentation cause the tunnel to fail, such as the SSL termination profile. Try removing these and testing again...
I have built a Configuration Template for Juniper Secure Connect. This has been tested on SRX3XX and SRX4X00 series running versions 22.4 and 21.4. Compare against the configuration you have and you may find the culprit.
https://github.com/thewhitehouse007/junos-config-templates
This has been a long time coming and thanks for that final push to encourage me to post this repository publically.
Cheers
------------------------------
GAVIN WHITE
------------------------------
Original Message:
Sent: 11-27-2023 12:56
From: bkamen
Subject: SRX300 w/JunOS 22.4 Dynamic VPN w/PulseSecure Initial Config
UPDATE: I'm a lot closer - I found this video which explains the missing piece of what I was looking for - although the config still doesn't work. but I am closer. I wish Juniper would their knowledgebase better organized. I know when I work on FPGAs (my normal day job... sort of) I can tell the Xilinx doc library tool I want a specific version of IDE in my search results and it does that. I'm not seeing where to do that with the Juniper Knowledgebase and the results I get are for older versions with invalid bits of information.
Hey all,
I'm configuring a new SRX300 and everything else is done except for the dynamic VPN users which will be using Pulse Secure.
Looks like the syntax of the config has changed (again) and I'm struggling to find a good link describing what to do under 22.4 vs previous versions.
(I have working configs from prior versions too. But, those examples are deprecated because of the new config syntax)
I already have the Let's_Encrypt up and running (also Juniper's example isn't verbose enough to explain some of the details and their example doesn't work on its own).
When I go to the Network -> VPN -> IPsec VPN -> Create VPN (Pulse Secure), I'm presented with options that don't feel like they will accomplish what I want nor are some the fields explained well enough that I'm confident I'm entering the right information or if information needs to be entered at all.
So I'd love if someone has a link to Juniper docs for THIS version (because it's so different) which hopefully includes some CLI commands to demonstrate a working template example -- cause I'm not finding it.
I even downloaded the CLI reference PDF from 2023-Jun-something and it's no help. Google doesn't help because the examples aren't for this version and thus too different.
Navigating Juniper's knowledge base won't let me lock in to version 22.4 ONLY results.
Thanks in advance,
-Ben
------------------------------
Ben Kamen
------------------------------