Juniper SSL VPN Notes Page 1



Similar documents
Requirements on terminals and network Telia Secure Remote User, TSRU (version 7.1 R4)

Requirements on terminals and network Telia Secure Remote User, TSRU (version 7.3 R6)

Platform Guide. SA Supported Platforms. Service Package Version 7.4R1

Platform Guide. SA Supported Platforms. Service Package Version 7.3R1

Platform Guide. SA Supported Platforms Service Package Version 7.4R7

Platform Guide. SA Supported Platforms. Service Package Version 7.3R1

SA Supported Platforms

Pulse Connect Secure. Supported Platforms Guide. Product Release 8.0. Document Revision 2.0 Published:

SA Supported Platforms

Pulse Connect Secure. Supported Platforms Guide. Product Release 8.1. Document Revision 3.0 Published:

SA Supported Platforms

Pulse Connect Secure. Supported Platforms Guide. Product Release 8.1. Document Revision 9.0 Published:

Java Secure Application Manager

MRU Secure Remote Access Service (SRAS) External User Guide

UMMS SSL VPN Instructions

KAIST SSL VPN USER MANUAL

MRU Secure Remote Access Service (SRAS) External User Guide

Windows and MAC User Handbook Remote and Secure Connection Version /19/2013. User Handbook

VPN Web Portal Usage Guide

DOE VPN Client Installation and Setup Guide March 2011

Access the UTHSCSA Palo Alto Networks (PAN) VPN using Global Protect VPN client and Two Factor Authentication (2FA)

Citrix Access on SonicWALL SSL VPN

Baltimore County Public Schools Department of Information Technology Network Support Services System Engineering Document

Dell SonicWALL SRA 7.5 Citrix Access

Network Connect Installation and Usage Guide

Clientless SSL VPN Users

SRA 6.0 User s Guide 1

Using the FDO Remote Access Portal

mystanwell.com Installing Citrix Client Software Information and Business Systems

Clientless SSL VPN End User Set-up

Secure Access Using VPN

VIRTUAL SOFTWARE LIBRARY REFERENCE GUIDE

How to Set Up SSL VPN for Off Campus Access to UC eresources

Remote VPN: Remote access for personal devices

Campus VPN. Version 1.0 September 22, 2008

How To Use The Sonicwall Sra User Guide

SonicWALL SSL VPN 3.5 User s Guide

Access the TCNJ Palo Alto Networks VPN using the GlobalProtect VPN client

SSL VPN Service. To get started using the NASA IV&V/WVU SSL VPN service, you must verify that you meet all required criteria specified here:

1. Accessing the LONZA network from a private PC or Internet Café

SonicWALL SSL VPN 5.0 User s Guide

REMOTELY ACCESS YOUR FILES WITH THE FLAGLER FILECONNECT SYSTEM

VPN: Virtual Private Network Setup Instructions

Junos Pulse Access Control Service 4.4R4-MDM Supported Platforms Document

Installing the Citrix Online Plug-In

REMOTE ACCESS USER GUIDE

Connecting to Pitt s SRemote VPN Using Windows Vista / Windows 7 January 2012

VPN User Guide. For Mac

FortiClient SSL VPN Client User s Guide

Citrix Remote Access Portal U s e r M a n u a l

SECURE ACCESS TO THE VIRTUAL DATA CENTER

ATTENTION: End users should take note that Main Line Health has not verified within a Citrix

Abila Nonprofit Online. Connection Guide

Juniper Networks Secure Access Release Notes

Remote Application Server Version 14. Last updated:

How to Remotely Access the C&CDHB Network from a Personal Device

Using the FDO Remote Access Portal

VPN User Guide. For Mac

Accessing the Mercy Remote Access Portal (SSL VPN)

BEFORE YOU START... 1 Set Up Your PC Desktop Computer/Laptop... 1 Set Up Remote Desktop on Your ipad... 3

my.airproducts.com Windows Vista Client Configuration

Cisco AnyConnect VPN Client Installation Guide for Single Factor Authentication: Windows

2X Cloud Portal v10.5

Accessing Restricted University Online Resources Using Network Connect. on the Secure Remote Access Service

extranet.airproducts.com Windows XP Client Configuration

Finance & Information Management Network Operations

The SSL device also supports the 64-bit Internet Explorer with new ActiveX loaders for Assessment, Abolishment, and the Access Client.

Remote Application Server Version 14. Last updated:

Kaspersky Security Center Web-Console

Accessing TP SSL VPN

Accessing the Media General SSL VPN

Access Your Cisco Smart Storage Remotely Via WebDAV

SHC Client Remote Access User Guide for Citrix & F5 VPN Edge Client

VPN User Guide. For PC

Remote Desktop Services

Flexible Identity Federation

Verizon Remote Access User Guide

This guide provides all of the information necessary to connect to MoFo resources from outside of the office

2XApplication Server XG v10.1

VPN AND CITRIX INSTALLATION GUIDE

Instructions for use the VPN at the Warsaw School of Economics

NS Financials. Client Platform Guide for Mac Using Safari Incl Citrix Setup As A Local Client

SingTel VPN as a Service. Quick Start Guide

isupplier PORTAL ACCESS SYSTEM REQUIREMENTS

Java. How to install the Java Runtime Environment (JRE)

SSL VPN A look at UCD through the tunnel

Cisco Adaptive Security Appliance Smart Tunnels Solution Brief

Junos Pulse VPN Client Installation

Remote Desktop Gateway. Accessing a Campus Managed Device (Windows Only) from home.

The cloud server setup program installs the cloud server application, Apache Tomcat, Java Runtime Environment, and PostgreSQL.

IBM Remote Lab Platform Citrix Setup Guide

Mercy s Remote Access Instructions

Remote Access End User Reference Guide for SHC Portal Access

Initial DUO 2 Factor Setup, Install, Login and Verification

Install and End User Reference Guide for Direct Access to Citrix Applications

Technology Services Group Procedures. IH Anywhere guide. 0 P a g e

Transcription:

Juniper SSL VPN Notes Page 1 The Juniper SSL VPN is a full-featured appliance using SSL protocol to allow remote computers to securely access our organization s resources with a standard browser. The types of resources that Juniper can make available are listed below: Resources Web Browsing File Browsing Terminal Services Telnet SSH Network Connect (NC) Junos Pulse (JP) Secure Meeting Virtual Desktop Secure Application Manager (W-SAM and J-SAM) Description Allows access to internal web pages and web-based applications used by government Allows access to Windows and Unix Files Supports Remote Desktop Connection (RDC/RDP), Citrix and Terminal Services sessions Supports Secure Terminal access to Telnet sessions Supports Secure Terminal access to SSH sessions Provides full network connectivity to a broad range of internal resources and applications using Layer 3 (IPSec-like) networks connection New replacement software for Network Connect to support additional mobile devices Supports Cross-platform secure on-line meetings Supports VMware Virtual Desktops Supports client/server applications such as Citrix, Microsoft Terminal Services, Microsoft Exchange MAPI, and Lotus Notes Features currently implemented by the Network Operations group Only resources marked with are supported by our Juniper implementation. Our primary goals of using Juniper are to reduce number of Layer 3 network connections (NC or JP), provide general users a remote capability to remote connect to their work PC(s) using Remote Desktop connection (RDC/RDP) and access the internal government web pages and web-based applications from home or remote locations. As such, only Web Browsing and Terminal Services resources will be available to majority of the users. We also will enforce an endpoint security using Host Checker and Cache Cleaner to ensure all connecting devices meet the security requirements before a connection is granted.

Juniper SSL VPN Notes Page 2 Juniper Supported Platforms The current version of Juniper (IVE 8.0R1) supports wide variety of Operating Systems and browsers. The list of supported Operating Systems and combined browser is listed: Platform Operating System Browsers and Java Environment Windows (this platform is supported by Network Operations- Remote group) Vista Enterprise/Ultimate/Business/Home Basic/Home Premium with Service Pack 2 on 32 bit or 64 bit platforms Windows 7 Enterprise/Ultimate/Professional/Home Basic/Home Premium on 32 bit or 64 bit All Windows 8 and Windows 8.1 versions Internet Explorer 6.0 to 9.0 Internet Explorer 10 and 11 (On Windows 8.0 and 8.1 platforms, the endpoint must use desktop mode and enable plug-ins in the Internet Explorer configuration) Mac Linux All XP Home and Professional versions Windows 2003 R1 Windows 2008 R2 Mac OS X 10.5, 10.6, 10.7 and 10.8, 32 bit and 64 bit Mac OS X 10.9 (with Junos Pulse client) OpenSuse 10.x, 11.x and 12.1, 32 bit only Ubuntu 9.10, 10.x, 11.x and 12.04 LTS, 32 bit only Red Hat Enterprise Linux 5, 32 bit only Firefox 3.0 to Firefox 10 Sun JRE 6 and JRE7 Safari 4.0 to 6.0 Sun JRE 6 and JRE7 Firefox 3.0 to Firefox 10 Sun JRE 6 and JRE7 IcedTea-Web 1.2 with OpenJDK 6 & 7 Fedora 12 Solaris Solaris 10, 32 bit only Firefox 10 Mobile devices iphone/ipad OS (ios) 3.0 up to 7.0 with default Safari and ipad Android 2.0 up to 4.3 Mozilla 2.0 and above Symbian OS 8.1, S60 5th edition and Symbian Anna OS Windows Mobile 5.0 Standard and above, Classic and Professional: Pocket IE 4.0 Windows Mobile 6.5 Standard, Classic and Professional: Internet Explorer Mobile 6.0 NTT I-mode phone AU/KDDI phone : Open wave Mobile Browser Vodafone phone : Open wave Mobile Browser Our Juniper implementation will only support the Windows platform listed above using Microsoft Internet Explorer 7, 8, 9, 10 and 11. Users who have non-windows devices (like Mac, Linux, iphone, ipad, Android devices, Microsoft Mobile devices and smartphones) may still able to connect but support will not be provided.

Juniper SSL VPN Notes Page 3 Host Connection Requirements (for Windows PC only) Your host Windows PC must meet the Windows platform requirements You must have administrative rights on your host Windows PC (to install Juniper s clients) You must have an anti-virus program installed that is supported by Juniper (see current list published by Juniper on http://www.juniper.net/techpubs/software/ive/esap/releasenotes/j-esap-2.5.1-supportedproductsv3sdk.pdf, Network Operations Remote group will provide anti-virus support to a non-government issued Windows PCs if you are using Windows Defender, Microsoft Security Essentials and Microsoft Systems Center Endpoint Protection) Provide us a list of IP address(es) for the work PC(s) you want to RDP Enable Remote Desktop service on your work PC(s) you want to RDP to accept remote connections. Connection Instructions with Microsoft Internet Explorer (IE) version 7/8/9/10/11 1) Type https://rm.gov.ns.ca from your Microsoft IE browser to launch the Sign-on page. Please note: if you are using non-ie browser, your prompt screen will be different for a similar install prompts. The system may prompt you to install Active-x JuniperSetupClient, just click OK to accept and install the Juniper Setup client Juniper will perform Endpoint Security to check for supported anti-virus program on your host PC. If this is the first time you sign on, Juniper will auto-install the Juniper Host Checker client on your host PC

Juniper SSL VPN Notes Page 4 If your anti-virus is not supported, an error message similar to the one below will be displayed and you will not able to proceed further: 2) The next screen you see is a customized portal screen (see Figure 2) created based on your VPN user group. a) If you are Remote option user, you can use the customized Connect to My Computer on NSGOV Domain bookmark(s) to RDP to your work PC(s). The first time you using this, Juniper will auto-install the Juniper Terminal service Client, click the Always button to continue.

Juniper SSL VPN Notes Page 5 b) If you are Network Connect user, click on Start next to Network Connect on Juniper page to launch layer-3 connection. The first time you using this, Juniper will auto-install the Juniper Network Connect Client as shown below Using Juniper without Host Checker option (not available to Network Connect or Junos Pulse users) You can still connect to Juniper if your host Windows PC (or any other remote devices) doesn t have a copy of the supported anti-virus program installed. Type https://rm.gov.ns.ca/nohostcheck will allow you to connect to a restricted Portal page similar to Figure 3 to access web and TS session resources without the options for Browser box and Terminal Session Launch box. The RDP session will be restricted with no printer, no drive mappings and with 2 hours maximum session timeout. Attachments Juniper SSL VPN (Signing on process)-figure 1 Sample SSL VPN Portal Page Explain-Figure 2 Restricted SSL VPN Portal Page (without Host Checker option)-figure 3

Juniper SSL VPN (Signing on process) Using supported Web Browsers Connect to URL Https://rm.gov.ns.ca Endpoint security host checker will launch to ensure remote devices meet the security requirements, deny connection if host check failed Sign-on Page Successful Sign-on using Secure LDAP Authentication Or Network Connect Users will see a customized VPN Portal Page based on user name, group, attribute and custom expression. Users will have customized bookmarks to access internal network resources including internal/external webpages, web-based applications, TS, Citrix, Client/ Server applications, Files Share (Windows only), Telnet/SSH (if needed), Layer 3 network Access (Network Connect using Junos Pulse client-ipsec like VPN), remote Control to user s PC, servers and virtual desktops (if available) using RDP. Figure 1

Sample SSL VPN Portal Page Explain Logo User/Browsing Toolbar (can be turned on/off, click on the Home icon will return to this page) Welcome message Browser Bar (can be turned on to allow users to enter URLs) Windows/Unix Files (customized file share/ access bookmarks)- click to see/open some sample files with various file type. Terminal Services (allow user to RDP to user s workstation, servers and TS applications) Client Application Panel (include Network Connect using Junos Pulse client for Ipsec-like layer 3 network access, Java Secure Application Manager and Windows Secure Application Manager for Client/Server applications) Or Network Connect Using Dynamic Bookmark and Single Signon (SSO) to RDP to user s workstations/ servers without prompting for username and password again Customized web bookmarks for Internal/External webpages, TSWeb, Citrix MetaFrame and web-based applications (users can add personal bookmarks if needed, the feature is disabled since it requires additional overhead and may have a performance impact on the SSL VPN device Virtual Desktops panel (RDP to Virtual Desktops if available) Figure 2

Figure 3 Restricted SSL VPN Portal Page (without Host Checker option) Via https://rm.gov.ns.ca/nohostcheck

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information