SSL VPN
Blogs
Discussion Forums
Programs & Events
turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Reply
Topic Options
KCMFGI
Visitor
KCMFGI
Posts: 4
Registered: ‎03-04-2013
0
Accepted Solution

SSO for VPN-SSL login

Options

‎03-06-2013 12:23 AM

Hello,

 

My environment:

- Computer members of Windows 2003 Active Directory domain

- Users log on these computers with their Active Directory username/password

- Users (using IE or FireFox) log on SA (v7.1) web pagewith the same AD username/password

 

I'd like to know if it's possible for my dear users to be automatically loged on the SA web page without re-entenring their credentials (same as Windows, I repeate).

 

Hope you understand and it's possible...

 

Thanks all.

Message 1 of 8 (491 Views)
 
Reply
Moderator Moderator
Moderator
SVK
Posts: 150
Registered: ‎08-22-2011
0

Re: SSO for VPN-SSL login

Options

‎03-06-2013 12:58 AM

Hi,

 

If I understand correctly, you would like to do a sso to SSL VPN homepage(from browser).

 

If the above understanding is correct then this is not possible.

 

However, if the main intention is L3 connectivity you can enable gina/credential provider for network connect/junos pulse.

 

Regards,

Message 2 of 8 (484 Views)
 
Reply
KCMFGI
Visitor
KCMFGI
Posts: 4
Registered: ‎03-04-2013
0

Re: SSO for VPN-SSL login

Options

‎03-06-2013 01:31 AM

"SSO to SSL VPN homepage(from browser) is not possible" !

This is a bad news, I hope ths functionnality will be added soon...

 

We don't use NC ou Pulse, so GINA is not possible for us.

 

Thanks for this quick answere.

Message 3 of 8 (476 Views)
 
Reply
Lilja
Contributor
Lilja
Posts: 71
Registered: ‎12-02-2009
0

Re: SSO for VPN-SSL login

Options

‎03-06-2013 01:38 AM

With certificate based authentication you can achieve "no-interaction" logon...

---------------------------------------------------
Please mark this post as 'accepted solution' if my input answers your question!
A kudo would be nice if you think I deserve it.
---------------------------------------------------
2 A/P clustered 6500, 7.2R7
2 A/P clustered 2500, 7.2R7 LAB
Message 4 of 8 (472 Views)
 
Reply
KCMFGI
Visitor
KCMFGI
Posts: 4
Registered: ‎03-04-2013
0

Re: SSO for VPN-SSL login

Options

‎03-06-2013 01:55 AM

Thanks for this answer, this is a good idea.

 

Unfortunaly, we don't use certificates and don't have a PKI.

We are a small business.

Message 5 of 8 (468 Views)
 
Reply
Moderator Moderator
Moderator
SVK
Posts: 150
Registered: ‎08-22-2011
0

Re: SSO for VPN-SSL login

Options

‎03-06-2013 01:59 AM

You can promote one of your windows server as a CA authority and issue certificate from this sever to users .

 

Regards,

Message 6 of 8 (465 Views)
 
Reply
KCMFGI
Visitor
KCMFGI
Posts: 4
Registered: ‎03-04-2013
0

Re: SSO for VPN-SSL login

Options

‎03-06-2013 02:06 AM

Okay, I will test it in a lab.

 

Concerning the SSO to SSL VPN homepage(from browser), do you think it could be possible if I make a custom page ?

Message 7 of 8 (461 Views)
 
Reply
Moderator Moderator
Moderator
SVK
Posts: 150
Registered: ‎08-22-2011
0

Re: SSO for VPN-SSL login

Options

‎03-06-2013 02:16 AM

With the custom page option we may have to use javascript.

I am not a programmer  however, using the script we will be able to pull the username but not the password.

I dont think this will work with browser and operating system secuiryt enhancements.

 

Regards,

Message 8 of 8 (456 Views)
 
Reply
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.