Hi all,
Our company have a SSG550 firewall, and a Junos Pulse Access Control at remote site. And we want to connect the IC for unified access control.
Configuration at my site is like:
set infranet controller name "UAC-1"
set infranet controller name "UAC-1" host-name 10.10.2.3 port 11122
set infranet controller name "UAC-1" src-interface ethernet0/0
set infranet controller name "UAC-1" password "3uTMg+iUNQEGzcsiQwC6NtwsKgnlHWI55w=="
set infranet controller name "UAC-1" ca-hash "90EE54F60750B4A5AB3111044AED754024E6E4DF"
set infranet controller name "UAC-1" cert-subject "CN=A,OU=B ,O=C,L=D,ST=E,C=F"
When we config at both side, SSG550 keeps logging the following message.
2015-05-21 14:39:05 | notif | Infranet Enforcer could not connect to Infranet Controller UAC-1 (ip 10.10.2.3). |
2015-05-21 14:39:05 | notif | Infranet Enforcer could not connect to the Infranet Controller because the Controller could not be reached on the network. |
2015-05-21 14:39:05 | notif | PKI: Cannot build certificate chain for cert with subject name CN=A,OU=B ,O=C,L=D,ST=E,C=F,. |
What could be the problem? Thanks.