04-03-2009 08:29 AM
Does anyone have any details about this? Apparently Juniper is working on a unified client which will work with the SSLVPN independant of switch code.
I'm curious if this will also work as a replacement to NS-Remote.
If anyone has any details please share..
Solved! Go to Solution.
04-07-2009 01:23 PM
09-16-2009 12:36 PM
Here's the final answer:
"NC can not be independent of IVE’s base software release. Once IVE code is updated, all connecting NC clients will be updated to match IVE’s code base."Looks like it will be this way forever. Justin
09-16-2009 12:47 PM - edited 09-16-2009 12:52 PM
09-16-2009 01:10 PM
09-17-2009 01:43 AM
As you already know, there is no option to turn off the auto upgrade of NC. The reason is that we can not provide backwards compatibility for older NC clients working with newer SA-OS versions because of changes in the code and features supported.
09-22-2009 08:47 AM
yet Cisco and every other SSLVPN Provider have seemed to make this work very nicely. tkolb, is that Juniper can't do it or that Juniper does not want to invest the time in it. This is a major flaw in the design of the Network Connect.
As someone stated earlier in the thread, to upgade the switch code, Network Connect Client Code and Host checker for 3000 users all on the same day is simply too much change. Fine for small operations but our Help-Desk cant handle that kind of call volume when things go wrong. (And things do go wrong during the upgrade.)
09-24-2009 01:31 PM
Backwards compatiblity and forwards compatiblity are two different issues. Backwards should not be an issue for at least one or two versions.
This also becomes a major issue when conencting to multiple networks, or using a test network for new firmware. Each connection requires the software to be re-installed over and over. It is quite a hassle.
10-05-2009 07:59 PM
Just to add my 2c's worth; Having a client that requires administration privilege to install and is
directly linked to the version on the server is a design flaw I feel. They need to be able to have
backward's compatibility so we can upgrade our user base independant of when the server is