Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Security Director Application Integration Overview

    Administrators can integrate Security Director with the Juniper Secure Analytics (JSA) or IBM QRadar offense workflow by installing the Security Director extension application. The application is supported on JSA Release 2014.8 (IBM QRadar Release 7.2.8) and later.

    This integration provides a workflow to create Security Director firewall policies based on the events triggering the offense. You can create firewall rules in Security Director and apply them on firewall devices.

    You must register JSA or IBM QRadar with Security Director. After successful registration, you can create firewall rules in the Security Director Extension wizard.

    This integration facilitates the JSA and IBM QRadar administrators to seamlessly create firewall rules for an offense and navigate to Security Director application to view or modify firewall rules. In addition, all available reference sets are automatically converted to dynamic address groups in Security Director. Whenever an administrator creates a new reference set in JSA or IBM QRadar, the corresponding dynamic address group is created in Security Director. The JSA and IBM QRadar administrators can use these dynamic address groups to configure firewall policy rules.

    Note:

    • Administrators with policy create and edit access in Security Director can automatically create firewall rules from JSA and IBM QRadar.
    • Administrators can create rules and update the devices in their administrative domain, only.

    Modified: 2017-12-25