Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Centralized Management with NSM Overview

    Juniper Networks Network and Security Manager (NSM) is a central management server capable of managing hundreds of IDP Series devices and other Juniper Networks devices, such as ScreenOS firewalls, SA Series devices, and IC Series devices. You typically deploy NSM in a management subnet accessible to the NSM-managed devices.

    Figure 1 illustrates the flow of information between the tiers of the central management solution: the NSM user interface, the NSM server, and IDP Series devices.

    Figure 1: IDP-NSM Communication

    Image g036601.gif

    The IDP Series configuration, security policies, attack objects, and log records are stored in NSM server databases and administered using the NSM user interface. Communication between the NSM server and IDP Series devices, and between the NSM server and the NSM user interface, is encrypted and authenticated.

    For IDP Series deployments, centralized management provides the following benefits:

    • Centralized management for IDP Series devices and other network devices
    • Consolidated logs from different devices in a single repository
    • Centralized management of enterprise security policies
    • Simplified management for attack signature updates
    • Role-based administration

    For information about installing NSM and using NSM distributed management features, management objects (such as address objects, service objects, and templates), and navigational and display features, see the NSM documentation.

    Published: 2011-02-08