Pulse Secure apologizes for the inconvenience caused.
The fix for customers who do not use Always-on, VPN only access, Lockdown mode or Traffic enforcement features will be available in Pulse Desktop Client 9.0R3.2 which is tentative for release by the 1
st week of March, 2019.
The fix involves not loading the Kernel Extension (KEXT) by default when the Pulse Secure Desktop Client is installed.
For customer who do use Always-on, VPN only access, Lockdown mode or Traffic enforcement features are used, Pulse Secure is currently investigating further and will keep this KB updated when we have further updates.
Recommended Steps:
| Scenario | Short Term | Long Term |
| Customers not using Traffic Enforcement or Lock down mode | Option 1: Run the unload kernel extension command:
sudo kextunload /Library/Extensions/PulseSecureFirewall.kext
Note: The unload command must be run after every reboot / restart of macOS as kernel extension is loaded by default during boot.
Option 2:
- Uninstall Pulse Desktop Client 9.0Rx
- Install Pulse Desktop Client 5.3R7 & below. Kernel extension is only supported starting with Pulse Desktop Client 9.0R1 to 9.0R3.1.
| Upgrade to Pulse Desktop Client 9.03.2 and above (tentative for first week of March) |
| Customer using Traffic Enforcement or Lock Down Mode |
- Uninstall 9.0Rx Pulse Desktop client
- Deploy Pulse Desktop Client 5.3R7 & below. Kernel extension is only supported starting with Pulse Desktop Client 9.0R1 to 9.0R3.1.
| TBA |
Note: Pulse Secure officially qualified Pulse Desktop client 5.3R7 for Mojave (
KB43768)
