Juniper SSL

Use the following guidelines to configure Juniper SSL VPN and Pulse Secure SSL VPN.

Table 1. Juniper SSL settings
Item	Description
Name	Enter a short phrase that identifies this VPN setting.
Description	Provide a description that clarifies the purpose of these settings.
Channel	For macOS only. Select one of the following distribution options: Device channel - the configuration is effective for all users on a device. This is the typical option. User channel - the configuration is effective only for the currently registered user on a device.
Connection Type	Select Juniper SSL.
Deploy inside Knox Workspace	Select this option to deploy the VPN client app inside the Knox Workspace (container). Deploying the app inside the container means that the Knox security platform protects the app and its data. This option is available only if you select the Samsung Knox option.
Server	Enter the IP address, hostname, or URL for the VPN server.
Proxy	Select None, Manual, or Automatic to configure a proxy. If you select Manual, you must specify the proxy server name and port number. If you select Automatic, you must specify the proxy server URL.
Proxy Server URL	Automatic Proxy Enter the URL for the proxy server. Enter the URL of the location of the proxy auto-configuration file.
Proxy Server	Manual Proxy Enter the name for the proxy server.
Proxy Server Port	Manual Proxy Enter the port number for the proxy server.
Type	Manual Proxy Select Static or Variable for the type of authentication to be used for the proxy server.
Proxy Server User Name	Manual Proxy If the authentication type is Static, enter the username for the proxy server. If the authentication type is Variable, the default variable selected is $USERID$.
Proxy Server Password	Manual Proxy If the authentication type is Static, enter the password for the proxy server. Confirm the password in the field below. If the authentication type is Variable, the default variable selected is $PASSWORD$.
Proxy Domains (iOS only)	The VPN will only proxy for the domain and domain suffixes specified here (.com and .org are examples of top-level domain suffixes). Domain suffixes can be used to match multiple domains. For example, .com would include all .com domains, and example.com would include all domains ending in example.com, such as pages.example.com and mysite.example.com. Wildcards are not supported. Click Add+ to add a domain.
User Name	Specify the user name to use for authentication. The default value is $EMAIL$. Use this field to specify an alternate format. For example, your standard might be $USERID$. Why: Some enterprises have a strong preference concerning which identifier is exposed.
User Authentication	Select Password or Certificate.
Password	Specify the password to use. The default value is $PASSWORD$. Use this field to specify a custom format, such as $PASSWORD$_$USERID$.
Identity Certificate	Certificate authentication. Select the entry you created for supporting VPN, if you are implementing certificate-based authentication.
Role	Specify the Juniper user role to use as a restriction.
Realm	Specify the Juniper realm to use as a restriction.
VPN on Demand	Certificate authentication.
Per-app VPN	This feature is not supported on Windows devices.
Provider Type	This feature applies to iOS and macOS devices only.

Windows Configuration

Allowed Secured Resources (Windows Phone only)

Excluded Secured Resources (Windows Phone only)

See Application-triggered VPN for Windows devices for information on how to configure these settings to set up application-triggered VPN for 8.0.1 devices.

Custom Data

Add+ - Click to add a new key / value pair.
Key / Value - Enter the Key / value pairs necessary to configure the VPN setting. The app creator should provide the necessary key / value pairs.