cancel
Showing results for 
Search instead for 
Did you mean: 
elirana
Level 7

VPN With MWG

Hi , i know that it talk in previous post but i can't find a good answer.

we have MGW With Proxy on client.

while i go out from my domain env, i want to log into my VPN ( PULSE/ JUNIPER)

i get this error after my DC authentication , and i cant seem to pass it.

in this step , the WSAM - Windows secure application manager - need to be stared and it failes

i put all the services in the bypass list , add VPN url in trusted site / whitelist and i have no more ideas.

We use in MWG ver 7.6.2.9.0 ( 23104 )

without the MCP the VPn success without any errors with WSAM successful loading

thank you .

attache the error Inked123_LI.jpg

0 Kudos
7 Replies
johnaldridge
Level 10

Re: VPN With MWG

SSL inspection?  Are you doing that?

BTW, we block VPN services as anonymizers.

0 Kudos
elirana
Level 7

Re: VPN With MWG

Hi John,

Yes we do SSL inspection , I tried to add VPN site as whitelist in format of wildcard expression . https://ourvpn.company.com/*

is that correct ?

0 Kudos
johnaldridge
Level 10

Re: VPN With MWG

You can verify if an exception is working with a rule trace.  You can find instructions on doing rule traces in this forum.

0 Kudos
McAfee Employee

Re: VPN With MWG

HI Elirana,

I believe the Juniper VPN might need to bypass MCP, specifically "McpService.exe" and MCP will need to have the VPN service bypassed as well "DSSAMPROXY.EXE".

Best Regards,

Jon

0 Kudos
elirana
Level 7

Re: VPN With MWG

Hi Jon,

I already add bypass for services.

anything else ?

0 Kudos
McAfee Employee

Re: VPN With MWG

In the screenshot you showed the MCP bypass list, that looks good.

Did you bypass MCP in the Juniper VPN process list?

Best Regards,

Jon

0 Kudos
elirana
Level 7

Re: VPN With MWG

Hi ,

We found our problem in our Juniper appliance .
thank you all for your help , case closed.

0 Kudos