Help Center User GuideGetting StartedFAQsRelease Notes
 
X
User Guide
Getting Started
FAQs
Release Notes
Help Center
HideContents
Help CenterConfigureConfiguring Policy Enforcer Settings (Required Sky ATP, Policy Enforcer, and Cloud Feeds)
Contents  
Contents
Contents
DownloadPrint

Policy Enforcer Settings

To access this page, in the Security Director UI, navigate to Administration > PE Settings.

Configuring Policy Enforcer settings enables Security Directory to communicate with the Sky ATP feed connector service running within the context of the Policy Enforcer VM.

Note: If you are using Sky ATP without Policy Enforcer or Cloud Feeds only, you must still download Policy Enforcer and create a policy enforcer virtual machine.

Note: A Sky ATP license and account are needed for all threat prevention types (Sky ATP with PE, Sky ATP, and Cloud Feeds only). If you do not have a Sky ATP license, contact your local sales office or Juniper Networks partner to place an order for a Sky ATP premium license. If you do not have a Sky ATP account, when you configure Sky ATP, you are redirected to the Sky ATP server to create one. Please obtain a license before you try to create a Sky ATP account. Refer to Installing Policy Enforcer for instructions on obtaining a Sky ATP premium license.

Procedure

Before you configure Policy Enforcer, you must do the following:

  1. Enter the IP address for the policy enforcer virtual machine. (This is the IP address you configured during the PE VM installation. You can locate this IP address in the vSphere Center portal.)
  2. Enter the password for the policy enforcer virtual machine. (This is the same password you use to login to the VM with your root credentials. Note that the username defaults to root )

    Note: Refer to Installing Policy Enforcer for instructions on downloading Policy Enforcer and creating your policy enforcer virtual machine.

  3. Select a Threat Prevention Type:
    • Sky ATP with Policy Enforcer—All SDSN features and threat prevention types are available.

      Note: If you upgrade from cloud feeds or Sky ATP, you cannot roll back again. Upgrading resets all devices previously participating in threat prevention. Use the setup wizard to expedite the process configuring threat prevention policies.

      See the following topics to configure Sky ATP with Policy Enforcer:

    • Sky ATP—All threat prevention types are available: Command and control server, Geo IP, and Infected hosts.

      Note: If you upgrade from cloud feeds only to Sky ATP, you cannot roll back again. Upgrading resets all devices previously participating in threat prevention, and you must re-enroll them with Sky ATP. Use the setup wizard to expedite the process configuring threat prevention policies.

      See the following topics to configure Sky ATP:

    • Cloud feeds only—Command and control server and Geo IP are the only threat prevention types available.

      See the following topic to configure Cloud feeds only:

Related Documentation

Help us to improve. Rate this article.
     
Feedback Received. Thank You!
Previous
Configuring Policy Enforcer Settings (Required Sky ATP, Policy Enforcer, and Cloud Feeds)
Next
Setup Wizards-Sky ATP with Policy Enforcer
Related Topics
Need more help?

Ask questions in TechWiki

Contact Customer Support

Check documentation in TechLibrary

© 2017 Juniper Networks, Inc. All rights reserved

Rating by you:      
X

Additional Comments

800 characters remaining

May we contact you if necessary?

Name:
Email:

Need product assistance? Contact Juniper Support

Submit