![pulse secure client key lock on android pulse secure client key lock on android](https://docs.pulsesecure.net/WebHelp/PDC/9.1R4/assets/ClientUImacOS.png)
Note: Checking the “Always-on Pulse Client” option does not prevent end users with administrative privileges from stopping the Pulse Secure service on the endpoint device. This option disables all configuration settings that allow the end user to disable or remove Pulse connections, service or software.
![pulse secure client key lock on android pulse secure client key lock on android](http://kb.nhti.edu/download/thumbnails/1048611/image2020-3-13_14-51-10.png)
Always-on Pulse Client- Prevent end users from circumventing Pulse connections.Allow user connections - Controls whether connections can be added by the user.In this case, the user must use the client’s Forget Saved Settings feature, which clears all user-saved settings. If a setting changes (for example, if a user changes a password), the saved setting is invalid and connection attempts fail. When a user opts to save settings, that information is used for each subsequent connection without prompting. Ability to prefer smart-card certificates over other certificatesįigure 42 Client Certificate Selection Option.Improved automatic certificate-selection algorithm.The administrative console option to configure this feature is now available in 5.3R2. Note: In 5.2R5 Pulse Secure desktop client introduced two new features to improve the end-user experience during certificate authentication. Pulse supports soft token, hard token, and smart card authentication. If the user sees a username and token prompt and the Save settings check box is disabled. Note: If the authentication server is an ACE server or a RADIUS server and authentication is set to Users authenticate using tokens or one-time passwords, Pulse ignores the Allow saving logon information option. The Pulse Secure client can save the following settings: These settings are retained securely on the endpoint, evolving as the user connects through different Pulse servers. The Pulse Secure client can retain learned user settings. If you select this check box, users have the option of saving their credentials. If you clear this check box, the Pulse client always requires users to provide credentials. Allow saving logon information -Controls whether the Save Settings check box is available in login dialog boxes in the Pulse client.The following items apply to all connections in a connection set. You are here: Pulse Secure Connection Set Options