Help Center User GuideGetting StartedFAQsRelease Notes
 
X
User Guide
Getting Started
FAQs
Release Notes
Help Center
HideContents
Help CenterConfigureManual Configuration-Sky ATP with Policy Enforcer
Contents  
Contents
Contents
DownloadPrint

Configuring Sky ATP with PE (Without Quick Setup) Overview

This is an outline of the tasks required to configure Sky ATP with Policy Enforcer.

Note: If you prefer to use quick setup, which automatically takes you through the steps listed below, it is located under Configure>Setup Wizards>Sky ATP with PE.

Before You Begin

  • A Sky ATP license and account are needed for all threat prevention types (Sky ATP with PE, Sky ATP, and Cloud Feeds only). If you do not have a Sky ATP license, contact your local sales office or Juniper Networks partner to place an order for a Sky ATP premium license. If you do not have a Sky ATP account, when you configure Sky ATP, you are redirected to the Sky ATP server to create one. Please obtain a license before you try to create a Sky ATP account. Refer to Installing Policy Enforcer for instructions on obtaining a Sky ATP premium license.
  • Before you configure Policy Enforcer, you must enter the IP address and login credentials for the policy enforcer virtual machine. Go to Administration > PE Settings. Once this information is entered, you can begin the setup process. See Policy Enforcer Settings. (Refer to Installing Policy Enforcer for instructions on downloading Policy Enforcer and creating your policy enforcer virtual machine.)

Procedure

  1. Create one or more Sky ATP realms and enroll SRX Series devices in the appropriate realm. (Enroll devices by clicking Add Devices in the list view once the realm is created.)

    In the UI, navigate to Configure>Threat Prevention>Sky ATP Realms. Click the + icon to add a new Sky ATP realm.

    See Creating Sky ATP Realms and Enrolling Devices or Associating Sites for details.

  2. Create sites and add devices to those sites.

    In the UI, navigate to Devices >Secure Fabric. Click the + icon to create a new site.

    See Creating Secure Fabric and Sites for details.

  3. Create a policy enforcement group.

    In the UI, navigate to Configure>Shared Objects>Policy Enforcement Groups. Click the + icon to create a new policy enforcement group.

    See Creating Policy Enforcement Groups for details.

  4. Add the threat prevention policy, including profiles for one or more threat types: C&C server, infected host, malware.

    In the UI, navigate to Configure> Threat Prevention > Policies. Click the + icon to create a new threat prevention policy.

    See Creating Threat Prevention Policies for details.

Related Documentation

Help us to improve. Rate this article.
     
Feedback Received. Thank You!
Previous
Manual Configuration-Sky ATP with Policy Enforcer
Next
Creating Sky ATP Realms and Enrolling Devices or Associating Sites
Related Topics
Need more help?

Ask questions in TechWiki

Contact Customer Support

Check documentation in TechLibrary

© 2017 Juniper Networks, Inc. All rights reserved

Rating by you:      
X

Additional Comments

800 characters remaining

May we contact you if necessary?

Name:
Email:

Need product assistance? Contact Juniper Support

Submit