[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]

Enabling the JUNOS Enforcer Test-Only Mode

When configured in test-only mode, the SRX Series or J Series device enables all Unified Access Control (UAC) traffic to go through regardless of the UAC policy settings. The device logs the UAC policy’s access decisions without enforcing them so you can test the implementation without impeding traffic.

Before You Begin
For background information, read Unified Access Control Overview. Enable UAC through the relevant JUNOS security policies. See Enabling Unified Access Control on SRX Series and J Series Devices Configure the SRX Series and J Series devices as a JUNOS Enforcer. See Configuring the SRX Series and J Series Devices as a JUNOS Enforcer. If you are connecting to a cluster of Infranet Controllers, enable failover options. See Configuring the JUNOS Enforcer Failover Options.

Before You Begin

For background information, read Unified Access Control Overview.
Enable UAC through the relevant JUNOS security policies. See Enabling Unified Access Control on SRX Series and J Series Devices
Configure the SRX Series and J Series devices as a JUNOS Enforcer. See Configuring the SRX Series and J Series Devices as a JUNOS Enforcer.
If you are connecting to a cluster of Infranet Controllers, enable failover options. See Configuring the JUNOS Enforcer Failover Options.

To activate or deactivate test-only mode, use the test-only-mode configuration statement:


            
               edit services unified-access-control test-only-mode (true
                  | false)

[ Contents] [ Prev] [ Next] [ Index] [ Report an Error]