SRX

I have an issue trying to use the NCP secure client with the SRX 240 Dynamic VPN. I have matched all of the IKE settings, IPSEC settings, and the PSK and the client will not connect. I have the NCP client for Juniper. Can someone point me to some documentation or offer words of wisdom? Long story short I need to create the conenction configuration on the desktop NCP client to import into a Windows Mobile NCP client. 

Hi,

The config guide for NCP posted here may help you out:

http://forums.juniper.net/t5/SRX-Services-Gateway/NCP-Dial-up-VPN-config/m-p/133273

Check that the security zone on the SRX has ike permitted. The configuration wizard doesn't enable it. 

I forgot to mention the pulse client works fine. The NCP won't establish phase 1.

The issue is resolved. I originally had the ike-user-type  set for group-ike-id. Simple enough fix

 gateway gw_wizard_dyn_vpn {

            ike-policy ike_pol_wizard_dyn_vpn;

            dynamic {

                hostname "dynamicvpn@myworld.com";

                connections-limit 10;

                ike-user-type shared-ike-id;

Then in the client under Identities set the Type to "Fully Qualified Domain Name" with ID: "dynamicvpn@myworld.com"