2023年2月14日 · Ensure the complete certificate chain is installed under Trusted Client CAs on the Pulse Connect Secure device (including all root certificate, intermediate certificate(s) and the signer certificate).

2023年2月14日 · Disable "Allowing saving logon information" and "Dynamic certificate trust" for Connections Setting under Pulse Secure Client. Enable HTTP Only Device Cookie under User Role. Logging: Enable logging to a syslog server. This should be done for each of the following: Events, User Access, and Admin Access logs.

• Dynamic certificate trust: Determines whether users can opt to trust unknown certificates. If you select this check box, a user can ignore warnings about invalid certificates and connect to the target Ivanti server. By default, Dynamic certificate trust check box will be unchecked.

2023年2月14日 · This article describes an issue where Pulse Secure Desktop client is unable to trust the device certificate when making a connection to a Pulse Connect Secure (PCS) or Pulse Policy Secure (PPS) device.

If the Pulse connection has the Dynamic Certificate Trust option enabled, and there is an issue with the server certificate, Pulse asks the user if it is Ok to proceed. That certificate prompt causes a machine connection to fail.

It supports multiple authentication methods, including username/password, smart cards, and certificates. The software includes features like session migration, split tunneling, and endpoint security monitoring. These features enhance security and user experience by allowing seamless access and control over endpoint compliance.

2018年9月7日 · 在Pulse Secure Desktop Client 直到5.3R4中曾发现一漏洞，此漏洞被评为致命。 此漏洞会影响某些未知进程的组件 Dynamic Certificate Trust 。 手动调试的不合法输入可导致 权限升级。

2020年10月28日 · 在Pulse Secure Desktop Client 直到9.1R8中曾发现分类为致命的漏洞。 受此漏洞影响的是未知功能的组件Dynamic Certificate Trust。 手动调试的不合法输入可导致 目录遍历。 漏洞的CWE定义是 CWE-23。 此漏洞的脆弱性 2020-10-28公示人身份SA44601、所披露。

2020年10月30日 · Disable Dynamic certificate trust for PDC. (CVE-2020-8254) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. Upgrade to Pulse Secure Desktop Client 9.1R9 or later. A VPN client installed on the remote windows system is affected by multiple vulnerabilities.

2020年10月28日 · A vulnerability classified as critical was found in Pulse Secure Desktop Client up to 9.1R8. Affected by this vulnerability is an unknown function of the component Dynamic Certificate Trust. The manipulation with an unknown input leads to a path traversal vulnerability. The CWE definition for the vulnerability is CWE-23. The product uses ...