Contents

ContentsHide

Security Director User Guide
- About the Documentation
- Junos Space Security Director
  - Overview
    - Junos Space Security Director Overview
    - Juniper Networks Connected Security Overview
- Dashboard
  - Overview
    - Dashboard Overview
- Monitor
  - Events and Logs-All Events
    - Events and Logs Overview
    - Creating Alerts
    - Creating Reports
    - Creating Filters
    - Grouping Events
    - Using Events and Logs Settings
    - Selecting Events and Logs Table Columns
    - Viewing Threats
    - Viewing Data for Selected Devices
    - Using the Detailed Log View
    - Using the Raw Log View
    - Showing Exact Match
    - Using Filter on Cell Data
    - Using Exclude Cell Data
    - Showing Firewall Policy
    - Showing Source NAT Policy
    - Showing Destination NAT Policy
    - Downloading Packets Captured
    - Showing Attack Details
    - Using Filters
  - Events and Logs-Firewall
    - Firewall Events and Logs Overview
  - Events and Logs-Web Filtering
    - Web Filtering Events and Log Overview
  - Events and Logs-VPN
    - VPN Events and Logs Overview
  - Events and Logs-Content Filtering
    - Content Filtering Events and Logs Overview
  - Events and Logs-Antispam
    - Antispam Events and Logs Overview
  - Events and Logs-Antivirus
    - Antivirus Events and Logs Overview
  - Events and Logs-IPS
    - IPS Events and Logs Overview
  - Events and Logs-Screen
    - Screen Events and Logs Overview
  - Events and Logs-Sky ATP
    - Sky ATP Events and Logs Overview
  - Events and Logs-Apptrack
    - Apptrack Events and Logs Overview
  - Threat Prevention-Hosts
    - Infected Hosts Overview
    - Infected Host Details
  - Threat Prevention-C&C Servers
    - Command and Control Servers Overview
    - Command and Control Server Details
  - Threat Prevention-HTTP File Download
    - HTTP File Download Overview
    - HTTP File Download Details
  - Threat Prevention-Email Quarantine and Scanning
    - SMTP Quarantine Overview
    - Email Attachments Scanning Overview
    - Email Attachments Scanning Details
  - Threat Prevention-IMAP Block
    - IMAP Block Overview
  - Threat Prevention-Manual Upload
    - File Scanning Limits
  - Threat Prevention-Feed Status
    - Device Feed Status Details
  - Threat Prevention-All Hosts Status
    - All Hosts Status Details
  - Threat Prevention-DDoS Feeds Status
    - DDoS Feeds Status Details
  - Applications
    - Application Visibility Overview
    - Blocking Applications and Users
  - Users
    - User Visibility Overview
    - Blocking Users and Applications
  - Source IP
    - Source IP Visibility Overview
    - Blocking Source IP Addresses
  - Live Threat Map
    - Threat Map Overview
    - Blocking Threat Events
  - Threat Monitoring
    - Threat Monitoring Overview
  - Alerts and Alarms - Overview
    - Alerts and Alarms Overview
  - Alerts and Alarms-Alerts
    - Deleting an Alert
    - Searching Alerts
    - Using Generated Alerts
  - Alerts and Alarms-Alert Definitions
    - Creating Alert Definitions
    - Editing Alert Definitions
    - Cloning Alert Definition
    - Deleting Alert Definitions
    - Searching Alert Definitions
    - Alert Definitions Main Page Fields
  - Alerts and Alarms-Alarms
    - Using Device Alarms
    - Device Alarms Main Page Fields
  - VPN
    - IPsec VPN Monitoring Overview
    - About the Overview Page
    - Managing Monitored and Unmonitored VPNs
    - About the Monitored Tunnels Page
    - About the Devices Page
  - Job Management
    - Using Job Management in Security Director
    - Overview of Jobs in Security Director
    - Archiving and Purging Jobs in Security Director
    - Viewing the Details of a Job in Security Director
    - Canceling Jobs in Security Director
    - Reassigning Jobs in Security Director
    - Rescheduling and Modifying the Recurrence of Jobs in Security Director
    - Retrying a Failed Job on Devices in Security Director
    - Exporting the Details of a Job in Security Director
    - Job Management Main Page Fields
  - Audit Logs
    - Using Audit Logs in Security Director
    - Understanding Audit Logs in Security Director
    - Purging or Archiving and Purging Audit Logs in Security Director
    - Exporting Audit Logs in Security Director
    - Viewing the Details of an Audit Log in Security Director
    - Audit Logs Main Page Fields
  - Packet Capture
    - Packet Capture Overview
    - About the Packets Captured Page
    - Setting the Purge Policy
  - NSX Inventory-Security Groups
    - About the Security Groups Page
    - Viewing Members of a Security Group
  - vCenter Server Inventory-Virtual Machines
    - About the Virtual Machines Page
    - Viewing Network Details of a Virtual Machine
    - Viewing Security Groups of a Virtual Machine
- Devices
- Configure
  - Firewall Policy-Standard Policies
    - Firewall Policies Overview
    - Policy Ordering Overview
    - Creating Firewall Policies
    - Firewall Policies Best Practices
    - Creating Firewall Policy Rules
    - Rule Base Overview
    - Firewall Policy Locking Modes
    - Rule Operations on Filtered Rules Overview
    - Create and Manage Policy Versions
    - Assigning Devices to Policies
    - Comparing Policies
    - Export Policies
    - Creating Custom Columns
    - Promoting to Group Policy
    - Converting Standard Policy to Unified Policy
    - Viewing and Synchronizing Out-of-Band Firewall Policy Changes Manually
    - Importing Policies
    - Delete and Replace Policies and Objects
    - Unassigning Devices from Policies
    - Edit and Clone Policies and Objects
    - Publishing Policies
    - Showing Duplicate Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Updating Policies on Devices
    - Firewall Policies Main Page Fields
    - Firewall Policy Rules Main Page Fields
  - Firewall Policy-Unified Policies
    - About the Unified Policies Page
    - Unified Policy Overview
    - Creating Unified Firewall Policies
    - Creating Unified Firewall Policy Rules
    - Configuring a Default SSL Proxy Profile
    - Configure a Default IDP Policy
  - Firewall Policy-Devices
    - Devices with Firewall Policies Main Page Fields
  - Firewall Policy-Schedules
    - Schedules Overview
    - Creating Schedules
    - Schedules Main Page Fields
  - Firewall Policy-Profiles
    - Understanding Firewall Policy Profiles
    - Understanding Captive Portal Support for Unauthenticated Browser Users
    - Creating Firewall Policy Profiles
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Assigning Policies and Profiles to Domains
    - Viewing Policy and Shared Object Details
    - Firewall Policy Profiles Main Page Fields
  - Firewall Policy-Templates
    - Understanding Firewall Policy Templates
    - Creating Firewall Policy Templates
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Firewall Policy Templates Main Page Fields
  - Environment
    - Environment Variables and Conditions Overview
    - About the Environment Page
    - Creating a New Environment Variable
    - Editing and Deleting Environment Variables
    - Creating a New Environment Condition
    - Editing and Deleting Environment Conditions
  - Application Firewall Policy-Policies
    - Understanding Application Firewall Policies
    - Creating Application Firewall Policies
    - Delete and Replace Policies and Objects
    - Edit and Clone Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Finding Usages for Policies and Objects
    - Application Firewall Policies Main Page Fields
  - Application Firewall Policy-Signatures
    - Understanding Custom Application Signatures
    - Creating Application Signatures
    - Editing, Cloning, and Deleting Custom Application Signatures
    - Creating Application Signature Groups
    - Application Signatures Main Page Fields
  - Application Firewall Policy-Redirect Profiles
    - About the Redirect Profiles Page
    - Adding a Redirect Profile
    - Cloning, Editing, and Deleting Redirect Profiles
  - SSL Profiles
    - SSL Forward Proxy Overview
    - Creating SSL Forward Proxy Profiles
    - SSL Forward Proxy Profile Main Page Fields
    - Creating SSL Reverse Proxy Profiles
  - User Firewall Management-Active Directory
    - About the Active Directory Profile Page
    - Creating Active Directory Profiles
    - Deploying the Active Directory Profile to SRX Series Devices
    - Editing and Deleting Active Directory Profiles
  - User Firewall Management-Access Profile
    - LDAP Functionality in Integrated User Firewall Overview
    - About the Access Profile Page
    - Creating Access Profiles
    - Deploying the Access Profile to SRX Series Devices
    - Editing and Deleting Access Profiles
  - User Firewall Management-Identity Management
    - Juniper Identity Management Service Overview
    - About the Identity Management Profile Page
    - Creating Identity Management Profiles
    - Editing, Cloning, and Deleting Identity Management Profiles
    - Updating the Identity Management Profile to SRX Series Devices
  - User Firewall Management-End User Profile
    - End User Profile Overview
    - About the End User Profile Page
    - Creating an End User Profile
    - Edit and Delete End User Profile
    - End User Profile Operations
  - IPS Policy-Policies
    - Understanding IPS Policies
    - Creating IPS Policies
    - Creating IPS Policy Rules
    - Publishing Policies
    - Updating Policies on Devices
    - Assigning Devices to Policies
    - Create and Manage Policy Versions
    - Creating Rule Name Template
    - Export Policies
    - Unassigning Devices to Policies
    - Viewing and Synchronizing Out-of-Band IPS Policy Changes Manually
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Assigning Policies and Profiles to Domains
    - Viewing Policy and Shared Object Details
    - IPS Policies Main Page Fields
  - IPS Policy-Devices
    - Understanding IPS Policies
    - Devices with IPS Policies Main Page Fields
  - IPS Policy-Signatures
    - Understanding IPS Signatures
    - Creating IPS Signatures
    - Creating IPS Signature Static Groups
    - Creating IPS Signature Dynamic Groups
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Viewing Policy and Shared Object Details
    - IPS Policy Signatures Main Page Fields
  - IPS Policy-Templates
    - Understanding IPS Policy Templates
    - Creating IPS Policy Templates
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - IPS Policy Templates Main Page Fields
  - NAT Policy-Policies
    - NAT Overview
    - NAT Global Address Book Overview
    - Creating NAT Policies
    - Publishing Policies
    - NAT Policy Rules Main Page Field
    - Creating NAT Rules
    - Updating Policies on Devices
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Viewing Policy and Shared Object Details
    - Assigning Policies and Profiles to Domains
    - Comparing Policies
    - Create and Manage Policy Versions
    - Export Policies
    - Assigning Devices to Policies
    - Unassigning Devices to Policies
    - Creating Rule Name Template
    - Configuring NAT Rule Sets
    - Auto Grouping
    - NAT Policies Main Page Fields
  - NAT Policy-Devices
    - Devices with NAT Policies Main Page Fields
  - NAT Policy-Pools
    - Creating NAT Pools
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Showing Duplicate Policies and Objects
    - Viewing Policy and Shared Object Details
    - Assigning Policies and Profiles to Domains
    - NAT Pools Main Page Fields
  - NAT Policy-Port Sets
    - Creating Port Sets
    - Delete and Replace Policies and Objects
    - Edit and Clone Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Showing Duplicate Policies and Objects
    - Viewing Policy and Shared Object Details
    - Assigning Policies and Profiles to Domains
    - Port Sets Main Page Fields
  - UTM Policy-Policies
    - UTM Overview
    - Creating UTM Policies
    - Comparing Policies
    - Delete and Replace Policies and Objects
    - Viewing Policy and Shared Object Details
    - Assigning Policies and Profiles to Domains
    - Showing Duplicate Policies and Objects
    - Edit and Clone Policies and Objects
    - Show and Delete Unused Policies and Objects
    - UTM Policies Main Page Fields
  - UTM Policy-Web Filtering Profiles
    - Creating Web Filtering Profiles
    - Selecting a Web Filtering Solution
    - Web Filtering Profile Main Page Fields
  - UTM Policy-Category Update
    - About the Category Update Page
    - Configuring the Download URL Settings
    - Downloading and Installing URL Categories
    - Uploading and Installing URL Categories
    - Installing URL Categories on SRX Series Devices
  - UTM Policy-Antivirus Profiles
    - Creating Antivirus Profiles
    - Antivirus Profile Main Page Fields
  - UTM Policy-Antispam Profiles
    - Creating Antispam Profiles
    - Antispam Profile Main Page Fields
  - UTM Policy-Content Filtering Profiles
    - Creating Content Filtering Profiles
    - Content Filtering Profile Main Page Fields
  - UTM Policy-Global Device Profiles
    - Creating Device Profiles
    - Device Profiles Main Page Fields
  - UTM Policy-Default Configuration
    - About the Default Configuration Page
    - Create a Default UTM Configuration
    - Edit and Clone the Default Configuration
    - View and Delete Unused Default Configuration
  - UTM Policy-URL Patterns
    - Creating URL Patterns
  - UTM Policy-Custom URL Categories
    - Creating Custom URL Category Lists
  - Application Routing Policies
    - Understanding Application-Based Routing
    - About the Application Routing Policies Page
    - Configuring Advanced Policy-Based Routing Policy
    - About the Rules Page (Advanced Policy-Based Routing)
    - Creating Advanced Policy-Based Routing Rules
    - About the App Based Routing Page
    - Edit and Clone Policies and Objects
    - Assigning Devices to Policies
    - Customizing Profile Names
    - Publishing Policies
    - Updating Policies on Devices
  - Threat Prevention - Policies
    - Creating Threat Prevention Policies
    - Threat Prevention Policy Overview
    - Threat Policy Analysis Overview
    - Implementing Threat Policy on VMWare NSX
  - Threat Prevention - Feed Sources
    - About the Feed Sources Page
    - Sky ATP Realm Overview
    - Sky ATP Malware Management Overview
    - Sky ATP Email Management Overview
    - File Inspection Profiles Overview
    - Sky ATP Email Management: SMTP Settings
    - Configure IMAP Settings
    - Creating Sky ATP Realms and Enrolling Devices or Associating Sites
    - Modifying Sky ATP Realm
    - Creating File Inspection Profiles
    - Creating Allowlist for Sky ATP Email and Malware Management
    - Creating Blocklists for Sky ATP Email and Malware Management
    - Add JATP Server
    - Edit or Delete a JATP Server
    - Custom Feed Sources Overview
    - Creating Custom Feeds
    - Example: Creating a Dynamic Address Custom Feed and Firewall Policy
    - Configuring Settings for Custom Feeds
  - IPsec VPN-VPNs
    - IPsec VPN Overview
    - Creating IPsec VPNs
    - Understanding IPsec VPN Modes
    - Comparison of Policy-Based VPNs and Route-Based VPNs
    - Understanding IPsec VPN Routing
    - Understanding IKE Authentication
    - Publishing IPsec VPNs
    - Updating IPSec VPN
    - Modifying VPN Settings
    - Viewing Tunnels
    - Importing IPsec VPNs
    - Deleting IPSec VPN
    - IPsec VPN Main Page Fields
  - IPsec VPN-Extranet Devices
    - Creating Extranet Devices
    - Extranet Devices Main Page Fields
  - IPsec VPN-Profiles
    - VPN Profiles Overview
    - Creating VPN Profiles
    - Edit and Clone Policies and Objects
    - Assigning Policies and Profiles to Domains
    - VPN Profiles Main Page Fields
  - Shared Objects-Geo IP
    - Creating Geo IP Policies
    - Geo IP Overview
    - Delete and Replace Policies and Objects
  - Shared Objects-Policy Enforcement Groups
    - Creating Policy Enforcement Groups
    - Policy Enforcement Groups Overview
  - Shared Objects-Addresses
    - Addresses and Address Groups Overview
    - Creating Addresses and Address Groups
    - Import and Export CSV Files
    - Assigning Addresses and Address Groups to Domains
    - Showing Duplicate Policies and Objects
    - Delete and Replace Policies and Objects
    - Addresses Main Page Fields
  - Shared Objects-Services
    - Services and Service Groups Overview
    - Creating Services and Service Groups
    - Delete and Replace Policies and Objects
    - Showing Duplicate Policies and Objects
  - Shared Objects-Variables
    - Variables Overview
    - Creating Variables
    - Editing Variables
    - Import and Export CSV Files
    - Showing Duplicate Policies and Objects
  - Shared Objects-Zone Sets
    - Understanding Zone Sets
    - Creating Zone Sets
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Finding Usages for Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Showing Duplicate Policies and Objects
    - Viewing Policy and Shared Object Details
    - Zone Sets Main Page Fields
  - Shared Objects-Metadata
    - Metadata-Based Policy Enforcement Overview
    - About the Metadata Page
    - Creating a Metadata
  - Change Management-Change Requests
    - Change Control Workflow Overview
    - Creating a Firewall or NAT Policy Change Request
    - About the Changes Submitted Page
    - Approving and Updating Changes Submitted
    - Creating and Updating a Firewall Policy Using Change Control Workflow
    - Editing, Denying, and Deleting Change Requests
    - About the Changes Not Submitted Page
    - Discarding Policy Changes
    - Viewing Submitted and Unsubmitted Policy Changes
  - Change Management-Change Request History
    - About the Change Request History Page
  - Overview of Policy Enforcer and Sky ATP
    - Policy Enforcer Overview
    - Benefits of Policy Enforcer
    - Sky ATP Overview
  - Concepts and Configuration Types to Understand Before You Begin (Policy Enforcer and Sky ATP)
    - Policy Enforcer Components and Dependencies
    - Policy Enforcer Configuration Concepts
    - Sky ATP Configuration Type Overview
    - Features By Sky ATP Configuration Type
    - Available UI Pages by Sky ATP Configuration Type
    - Comparing the Juniper Connected Security and non-Juniper Connected Security Configuration Steps
  - Installing Policy Enforcer
    - Policy Enforcer Installation Overview
    - Deploying and Configuring the Policy Enforcer with OVA files
    - Installing Policy Enforcer with KVM
    - Policy Enforcer Ports
    - Identifying the Policy Enforcer Virtual Machine In Security Director
    - Obtaining a Sky ATP License
    - Creating a Sky ATP Cloud Web Portal Login Account
    - Loading a Root CA
    - Upgrading Your Policy Enforcer Software
  - Configuring Policy Enforcer Settings and Connectors
    - Policy Enforcer Settings
    - Policy Enforcer Connector Overview
    - Creating a Policy Enforcer Connector for Public and Private Clouds
    - Creating a Policy Enforcer Connector for Third-Party Switches
    - Editing and Deleting a Connector
    - Viewing VPC or Projects Details
    - Integrating ForeScout CounterACT with Juniper Networks Connected Security
    - ClearPass Configuration for Third-Party Plug-in
    - Cisco ISE Configuration for Third-Party Plug-in
    - Integrating Pulse Policy Secure with Juniper Networks Connected Security
  - Guided Setup-Sky ATP with SDSN
    - Using Guided Setup for Sky ATP with Juniper Connected Security
  - Guided Setup-Sky ATP
    - Using Guided Setup for Sky ATP
  - Guided Setup for No Sky ATP (No Selection)
    - Using Guided Setup for No Sky ATP (No Selection)
  - Manual Configuration-Sky ATP with SDSN
    - Configuring Sky ATP with Juniper Connected Security (Without Guided Setup) Overview
  - Manual Configuration-Sky ATP
    - Configuring Sky ATP (No Juniper Connected Security and No Guided Setup) Overview
    - Creating Sky ATP Realms and Enrolling Devices or Associating Sites
  - Cloud Feeds Only Threat Prevention
    - Configuring Cloud Feeds Only
  - Configuring No Sky ATP (No Selection) (without Guided Setup)
    - Configuring No Sky ATP (No Selection) (without Guided Setup) Overview
  - Migration Instructions for Spotlight Secure Customers
    - Moving From Spotlight Secure to Policy Enforcer
- Reports
  - Reports
- Administration
  - My Profile
    - Modifying Your User Profile in Security Director
  - Users and Roles-Users
  - Users and Roles-Roles
  - Users and Roles-Domains
  - Users and Roles-Remote Profiles
  - Logging Management
    - Logging and Reporting Overview
  - Logging Management-Logging Nodes
  - Logging Management-Statistics & Troubleshooting
    - Using the Log Statistics and Troubleshooting
  - Logging Management-Logging Devices
    - Logging Devices Main Page Fields
    - Creating Security Logs
  - Monitor Settings
    - About the Monitor Settings Page
    - Monitor Settings Overview
  - Signature Database
  - License Management
  - Migrating Content from NSM to Security Director
    - NSM Migration
  - Policy Sync Settings
    - About the Policy Sync Settings Page
    - Out-of-Band Changes Overview

ContentsHide

Security Director User Guide
- About the Documentation
- Junos Space Security Director
  - Overview
    - Junos Space Security Director Overview
    - Juniper Networks Connected Security Overview
- Dashboard
  - Overview
    - Dashboard Overview
- Monitor
  - Events and Logs-All Events
    - Events and Logs Overview
    - Creating Alerts
    - Creating Reports
    - Creating Filters
    - Grouping Events
    - Using Events and Logs Settings
    - Selecting Events and Logs Table Columns
    - Viewing Threats
    - Viewing Data for Selected Devices
    - Using the Detailed Log View
    - Using the Raw Log View
    - Showing Exact Match
    - Using Filter on Cell Data
    - Using Exclude Cell Data
    - Showing Firewall Policy
    - Showing Source NAT Policy
    - Showing Destination NAT Policy
    - Downloading Packets Captured
    - Showing Attack Details
    - Using Filters
  - Events and Logs-Firewall
    - Firewall Events and Logs Overview
  - Events and Logs-Web Filtering
    - Web Filtering Events and Log Overview
  - Events and Logs-VPN
    - VPN Events and Logs Overview
  - Events and Logs-Content Filtering
    - Content Filtering Events and Logs Overview
  - Events and Logs-Antispam
    - Antispam Events and Logs Overview
  - Events and Logs-Antivirus
    - Antivirus Events and Logs Overview
  - Events and Logs-IPS
    - IPS Events and Logs Overview
  - Events and Logs-Screen
    - Screen Events and Logs Overview
  - Events and Logs-Sky ATP
    - Sky ATP Events and Logs Overview
  - Events and Logs-Apptrack
    - Apptrack Events and Logs Overview
  - Threat Prevention-Hosts
    - Infected Hosts Overview
    - Infected Host Details
  - Threat Prevention-C&C Servers
    - Command and Control Servers Overview
    - Command and Control Server Details
  - Threat Prevention-HTTP File Download
    - HTTP File Download Overview
    - HTTP File Download Details
  - Threat Prevention-Email Quarantine and Scanning
    - SMTP Quarantine Overview
    - Email Attachments Scanning Overview
    - Email Attachments Scanning Details
  - Threat Prevention-IMAP Block
    - IMAP Block Overview
  - Threat Prevention-Manual Upload
    - File Scanning Limits
  - Threat Prevention-Feed Status
    - Device Feed Status Details
  - Threat Prevention-All Hosts Status
    - All Hosts Status Details
  - Threat Prevention-DDoS Feeds Status
    - DDoS Feeds Status Details
  - Applications
    - Application Visibility Overview
    - Blocking Applications and Users
  - Users
    - User Visibility Overview
    - Blocking Users and Applications
  - Source IP
    - Source IP Visibility Overview
    - Blocking Source IP Addresses
  - Live Threat Map
    - Threat Map Overview
    - Blocking Threat Events
  - Threat Monitoring
    - Threat Monitoring Overview
  - Alerts and Alarms - Overview
    - Alerts and Alarms Overview
  - Alerts and Alarms-Alerts
    - Deleting an Alert
    - Searching Alerts
    - Using Generated Alerts
  - Alerts and Alarms-Alert Definitions
    - Creating Alert Definitions
    - Editing Alert Definitions
    - Cloning Alert Definition
    - Deleting Alert Definitions
    - Searching Alert Definitions
    - Alert Definitions Main Page Fields
  - Alerts and Alarms-Alarms
    - Using Device Alarms
    - Device Alarms Main Page Fields
  - VPN
    - IPsec VPN Monitoring Overview
    - About the Overview Page
    - Managing Monitored and Unmonitored VPNs
    - About the Monitored Tunnels Page
    - About the Devices Page
  - Job Management
    - Using Job Management in Security Director
    - Overview of Jobs in Security Director
    - Archiving and Purging Jobs in Security Director
    - Viewing the Details of a Job in Security Director
    - Canceling Jobs in Security Director
    - Reassigning Jobs in Security Director
    - Rescheduling and Modifying the Recurrence of Jobs in Security Director
    - Retrying a Failed Job on Devices in Security Director
    - Exporting the Details of a Job in Security Director
    - Job Management Main Page Fields
  - Audit Logs
    - Using Audit Logs in Security Director
    - Understanding Audit Logs in Security Director
    - Purging or Archiving and Purging Audit Logs in Security Director
    - Exporting Audit Logs in Security Director
    - Viewing the Details of an Audit Log in Security Director
    - Audit Logs Main Page Fields
  - Packet Capture
    - Packet Capture Overview
    - About the Packets Captured Page
    - Setting the Purge Policy
  - NSX Inventory-Security Groups
    - About the Security Groups Page
    - Viewing Members of a Security Group
  - vCenter Server Inventory-Virtual Machines
    - About the Virtual Machines Page
    - Viewing Network Details of a Virtual Machine
    - Viewing Security Groups of a Virtual Machine
- Devices
- Configure
  - Firewall Policy-Standard Policies
    - Firewall Policies Overview
    - Policy Ordering Overview
    - Creating Firewall Policies
    - Firewall Policies Best Practices
    - Creating Firewall Policy Rules
    - Rule Base Overview
    - Firewall Policy Locking Modes
    - Rule Operations on Filtered Rules Overview
    - Create and Manage Policy Versions
    - Assigning Devices to Policies
    - Comparing Policies
    - Export Policies
    - Creating Custom Columns
    - Promoting to Group Policy
    - Converting Standard Policy to Unified Policy
    - Viewing and Synchronizing Out-of-Band Firewall Policy Changes Manually
    - Importing Policies
    - Delete and Replace Policies and Objects
    - Unassigning Devices from Policies
    - Edit and Clone Policies and Objects
    - Publishing Policies
    - Showing Duplicate Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Updating Policies on Devices
    - Firewall Policies Main Page Fields
    - Firewall Policy Rules Main Page Fields
  - Firewall Policy-Unified Policies
    - About the Unified Policies Page
    - Unified Policy Overview
    - Creating Unified Firewall Policies
    - Creating Unified Firewall Policy Rules
    - Configuring a Default SSL Proxy Profile
    - Configure a Default IDP Policy
  - Firewall Policy-Devices
    - Devices with Firewall Policies Main Page Fields
  - Firewall Policy-Schedules
    - Schedules Overview
    - Creating Schedules
    - Schedules Main Page Fields
  - Firewall Policy-Profiles
    - Understanding Firewall Policy Profiles
    - Understanding Captive Portal Support for Unauthenticated Browser Users
    - Creating Firewall Policy Profiles
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Assigning Policies and Profiles to Domains
    - Viewing Policy and Shared Object Details
    - Firewall Policy Profiles Main Page Fields
  - Firewall Policy-Templates
    - Understanding Firewall Policy Templates
    - Creating Firewall Policy Templates
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Firewall Policy Templates Main Page Fields
  - Environment
    - Environment Variables and Conditions Overview
    - About the Environment Page
    - Creating a New Environment Variable
    - Editing and Deleting Environment Variables
    - Creating a New Environment Condition
    - Editing and Deleting Environment Conditions
  - Application Firewall Policy-Policies
    - Understanding Application Firewall Policies
    - Creating Application Firewall Policies
    - Delete and Replace Policies and Objects
    - Edit and Clone Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Finding Usages for Policies and Objects
    - Application Firewall Policies Main Page Fields
  - Application Firewall Policy-Signatures
    - Understanding Custom Application Signatures
    - Creating Application Signatures
    - Editing, Cloning, and Deleting Custom Application Signatures
    - Creating Application Signature Groups
    - Application Signatures Main Page Fields
  - Application Firewall Policy-Redirect Profiles
    - About the Redirect Profiles Page
    - Adding a Redirect Profile
    - Cloning, Editing, and Deleting Redirect Profiles
  - SSL Profiles
    - SSL Forward Proxy Overview
    - Creating SSL Forward Proxy Profiles
    - SSL Forward Proxy Profile Main Page Fields
    - Creating SSL Reverse Proxy Profiles
  - User Firewall Management-Active Directory
    - About the Active Directory Profile Page
    - Creating Active Directory Profiles
    - Deploying the Active Directory Profile to SRX Series Devices
    - Editing and Deleting Active Directory Profiles
  - User Firewall Management-Access Profile
    - LDAP Functionality in Integrated User Firewall Overview
    - About the Access Profile Page
    - Creating Access Profiles
    - Deploying the Access Profile to SRX Series Devices
    - Editing and Deleting Access Profiles
  - User Firewall Management-Identity Management
    - Juniper Identity Management Service Overview
    - About the Identity Management Profile Page
    - Creating Identity Management Profiles
    - Editing, Cloning, and Deleting Identity Management Profiles
    - Updating the Identity Management Profile to SRX Series Devices
  - User Firewall Management-End User Profile
    - End User Profile Overview
    - About the End User Profile Page
    - Creating an End User Profile
    - Edit and Delete End User Profile
    - End User Profile Operations
  - IPS Policy-Policies
    - Understanding IPS Policies
    - Creating IPS Policies
    - Creating IPS Policy Rules
    - Publishing Policies
    - Updating Policies on Devices
    - Assigning Devices to Policies
    - Create and Manage Policy Versions
    - Creating Rule Name Template
    - Export Policies
    - Unassigning Devices to Policies
    - Viewing and Synchronizing Out-of-Band IPS Policy Changes Manually
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Assigning Policies and Profiles to Domains
    - Viewing Policy and Shared Object Details
    - IPS Policies Main Page Fields
  - IPS Policy-Devices
    - Understanding IPS Policies
    - Devices with IPS Policies Main Page Fields
  - IPS Policy-Signatures
    - Understanding IPS Signatures
    - Creating IPS Signatures
    - Creating IPS Signature Static Groups
    - Creating IPS Signature Dynamic Groups
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Viewing Policy and Shared Object Details
    - IPS Policy Signatures Main Page Fields
  - IPS Policy-Templates
    - Understanding IPS Policy Templates
    - Creating IPS Policy Templates
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - IPS Policy Templates Main Page Fields
  - NAT Policy-Policies
    - NAT Overview
    - NAT Global Address Book Overview
    - Creating NAT Policies
    - Publishing Policies
    - NAT Policy Rules Main Page Field
    - Creating NAT Rules
    - Updating Policies on Devices
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Viewing Policy and Shared Object Details
    - Assigning Policies and Profiles to Domains
    - Comparing Policies
    - Create and Manage Policy Versions
    - Export Policies
    - Assigning Devices to Policies
    - Unassigning Devices to Policies
    - Creating Rule Name Template
    - Configuring NAT Rule Sets
    - Auto Grouping
    - NAT Policies Main Page Fields
  - NAT Policy-Devices
    - Devices with NAT Policies Main Page Fields
  - NAT Policy-Pools
    - Creating NAT Pools
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Showing Duplicate Policies and Objects
    - Viewing Policy and Shared Object Details
    - Assigning Policies and Profiles to Domains
    - NAT Pools Main Page Fields
  - NAT Policy-Port Sets
    - Creating Port Sets
    - Delete and Replace Policies and Objects
    - Edit and Clone Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Showing Duplicate Policies and Objects
    - Viewing Policy and Shared Object Details
    - Assigning Policies and Profiles to Domains
    - Port Sets Main Page Fields
  - UTM Policy-Policies
    - UTM Overview
    - Creating UTM Policies
    - Comparing Policies
    - Delete and Replace Policies and Objects
    - Viewing Policy and Shared Object Details
    - Assigning Policies and Profiles to Domains
    - Showing Duplicate Policies and Objects
    - Edit and Clone Policies and Objects
    - Show and Delete Unused Policies and Objects
    - UTM Policies Main Page Fields
  - UTM Policy-Web Filtering Profiles
    - Creating Web Filtering Profiles
    - Selecting a Web Filtering Solution
    - Web Filtering Profile Main Page Fields
  - UTM Policy-Category Update
    - About the Category Update Page
    - Configuring the Download URL Settings
    - Downloading and Installing URL Categories
    - Uploading and Installing URL Categories
    - Installing URL Categories on SRX Series Devices
  - UTM Policy-Antivirus Profiles
    - Creating Antivirus Profiles
    - Antivirus Profile Main Page Fields
  - UTM Policy-Antispam Profiles
    - Creating Antispam Profiles
    - Antispam Profile Main Page Fields
  - UTM Policy-Content Filtering Profiles
    - Creating Content Filtering Profiles
    - Content Filtering Profile Main Page Fields
  - UTM Policy-Global Device Profiles
    - Creating Device Profiles
    - Device Profiles Main Page Fields
  - UTM Policy-Default Configuration
    - About the Default Configuration Page
    - Create a Default UTM Configuration
    - Edit and Clone the Default Configuration
    - View and Delete Unused Default Configuration
  - UTM Policy-URL Patterns
    - Creating URL Patterns
  - UTM Policy-Custom URL Categories
    - Creating Custom URL Category Lists
  - Application Routing Policies
    - Understanding Application-Based Routing
    - About the Application Routing Policies Page
    - Configuring Advanced Policy-Based Routing Policy
    - About the Rules Page (Advanced Policy-Based Routing)
    - Creating Advanced Policy-Based Routing Rules
    - About the App Based Routing Page
    - Edit and Clone Policies and Objects
    - Assigning Devices to Policies
    - Customizing Profile Names
    - Publishing Policies
    - Updating Policies on Devices
  - Threat Prevention - Policies
    - Creating Threat Prevention Policies
    - Threat Prevention Policy Overview
    - Threat Policy Analysis Overview
    - Implementing Threat Policy on VMWare NSX
  - Threat Prevention - Feed Sources
    - About the Feed Sources Page
    - Sky ATP Realm Overview
    - Sky ATP Malware Management Overview
    - Sky ATP Email Management Overview
    - File Inspection Profiles Overview
    - Sky ATP Email Management: SMTP Settings
    - Configure IMAP Settings
    - Creating Sky ATP Realms and Enrolling Devices or Associating Sites
    - Modifying Sky ATP Realm
    - Creating File Inspection Profiles
    - Creating Allowlist for Sky ATP Email and Malware Management
    - Creating Blocklists for Sky ATP Email and Malware Management
    - Add JATP Server
    - Edit or Delete a JATP Server
    - Custom Feed Sources Overview
    - Creating Custom Feeds
    - Example: Creating a Dynamic Address Custom Feed and Firewall Policy
    - Configuring Settings for Custom Feeds
  - IPsec VPN-VPNs
    - IPsec VPN Overview
    - Creating IPsec VPNs
    - Understanding IPsec VPN Modes
    - Comparison of Policy-Based VPNs and Route-Based VPNs
    - Understanding IPsec VPN Routing
    - Understanding IKE Authentication
    - Publishing IPsec VPNs
    - Updating IPSec VPN
    - Modifying VPN Settings
    - Viewing Tunnels
    - Importing IPsec VPNs
    - Deleting IPSec VPN
    - IPsec VPN Main Page Fields
  - IPsec VPN-Extranet Devices
    - Creating Extranet Devices
    - Extranet Devices Main Page Fields
  - IPsec VPN-Profiles
    - VPN Profiles Overview
    - Creating VPN Profiles
    - Edit and Clone Policies and Objects
    - Assigning Policies and Profiles to Domains
    - VPN Profiles Main Page Fields
  - Shared Objects-Geo IP
    - Creating Geo IP Policies
    - Geo IP Overview
    - Delete and Replace Policies and Objects
  - Shared Objects-Policy Enforcement Groups
    - Creating Policy Enforcement Groups
    - Policy Enforcement Groups Overview
  - Shared Objects-Addresses
    - Addresses and Address Groups Overview
    - Creating Addresses and Address Groups
    - Import and Export CSV Files
    - Assigning Addresses and Address Groups to Domains
    - Showing Duplicate Policies and Objects
    - Delete and Replace Policies and Objects
    - Addresses Main Page Fields
  - Shared Objects-Services
    - Services and Service Groups Overview
    - Creating Services and Service Groups
    - Delete and Replace Policies and Objects
    - Showing Duplicate Policies and Objects
  - Shared Objects-Variables
    - Variables Overview
    - Creating Variables
    - Editing Variables
    - Import and Export CSV Files
    - Showing Duplicate Policies and Objects
  - Shared Objects-Zone Sets
    - Understanding Zone Sets
    - Creating Zone Sets
    - Edit and Clone Policies and Objects
    - Delete and Replace Policies and Objects
    - Finding Usages for Policies and Objects
    - Show and Delete Unused Policies and Objects
    - Showing Duplicate Policies and Objects
    - Viewing Policy and Shared Object Details
    - Zone Sets Main Page Fields
  - Shared Objects-Metadata
    - Metadata-Based Policy Enforcement Overview
    - About the Metadata Page
    - Creating a Metadata
  - Change Management-Change Requests
    - Change Control Workflow Overview
    - Creating a Firewall or NAT Policy Change Request
    - About the Changes Submitted Page
    - Approving and Updating Changes Submitted
    - Creating and Updating a Firewall Policy Using Change Control Workflow
    - Editing, Denying, and Deleting Change Requests
    - About the Changes Not Submitted Page
    - Discarding Policy Changes
    - Viewing Submitted and Unsubmitted Policy Changes
  - Change Management-Change Request History
    - About the Change Request History Page
  - Overview of Policy Enforcer and Sky ATP
    - Policy Enforcer Overview
    - Benefits of Policy Enforcer
    - Sky ATP Overview
  - Concepts and Configuration Types to Understand Before You Begin (Policy Enforcer and Sky ATP)
    - Policy Enforcer Components and Dependencies
    - Policy Enforcer Configuration Concepts
    - Sky ATP Configuration Type Overview
    - Features By Sky ATP Configuration Type
    - Available UI Pages by Sky ATP Configuration Type
    - Comparing the Juniper Connected Security and non-Juniper Connected Security Configuration Steps
  - Installing Policy Enforcer
    - Policy Enforcer Installation Overview
    - Deploying and Configuring the Policy Enforcer with OVA files
    - Installing Policy Enforcer with KVM
    - Policy Enforcer Ports
    - Identifying the Policy Enforcer Virtual Machine In Security Director
    - Obtaining a Sky ATP License
    - Creating a Sky ATP Cloud Web Portal Login Account
    - Loading a Root CA
    - Upgrading Your Policy Enforcer Software
  - Configuring Policy Enforcer Settings and Connectors
    - Policy Enforcer Settings
    - Policy Enforcer Connector Overview
    - Creating a Policy Enforcer Connector for Public and Private Clouds
    - Creating a Policy Enforcer Connector for Third-Party Switches
    - Editing and Deleting a Connector
    - Viewing VPC or Projects Details
    - Integrating ForeScout CounterACT with Juniper Networks Connected Security
    - ClearPass Configuration for Third-Party Plug-in
    - Cisco ISE Configuration for Third-Party Plug-in
    - Integrating Pulse Policy Secure with Juniper Networks Connected Security
  - Guided Setup-Sky ATP with SDSN
    - Using Guided Setup for Sky ATP with Juniper Connected Security
  - Guided Setup-Sky ATP
    - Using Guided Setup for Sky ATP
  - Guided Setup for No Sky ATP (No Selection)
    - Using Guided Setup for No Sky ATP (No Selection)
  - Manual Configuration-Sky ATP with SDSN
    - Configuring Sky ATP with Juniper Connected Security (Without Guided Setup) Overview
  - Manual Configuration-Sky ATP
    - Configuring Sky ATP (No Juniper Connected Security and No Guided Setup) Overview
    - Creating Sky ATP Realms and Enrolling Devices or Associating Sites
  - Cloud Feeds Only Threat Prevention
    - Configuring Cloud Feeds Only
  - Configuring No Sky ATP (No Selection) (without Guided Setup)
    - Configuring No Sky ATP (No Selection) (without Guided Setup) Overview
  - Migration Instructions for Spotlight Secure Customers
    - Moving From Spotlight Secure to Policy Enforcer
- Reports
  - Reports
- Administration
  - My Profile
    - Modifying Your User Profile in Security Director
  - Users and Roles-Users
  - Users and Roles-Roles
  - Users and Roles-Domains
  - Users and Roles-Remote Profiles
  - Logging Management
    - Logging and Reporting Overview
  - Logging Management-Logging Nodes
  - Logging Management-Statistics & Troubleshooting
    - Using the Log Statistics and Troubleshooting
  - Logging Management-Logging Devices
    - Logging Devices Main Page Fields
    - Creating Security Logs
  - Monitor Settings
    - About the Monitor Settings Page
    - Monitor Settings Overview
  - Signature Database
  - License Management
  - Migrating Content from NSM to Security Director
    - NSM Migration
  - Policy Sync Settings
    - About the Policy Sync Settings Page
    - Out-of-Band Changes Overview

Installing Policy Enforcer with KVM

The Policy Enforcer Virtual Appliance Release 17.1R2 and later can be deployed on qemu-kvm (KVM) Release 1.5.3-105.el7 or later which is on CentOS Release 6.8 or later.

Note Juniper Networks does not provide any support for installing and configuring the KVM server. You must install the virtual appliance image and configure it as per the recommended specifications for the virtual appliance. Juniper Networks will provide support only after the Policy Enforcer Virtual Appliance has booted successfully.

The prerequisites to deploy a Policy Enforcer Virtual Appliance on a KVM server are as follows:

Knowledge about configuring and installing a KVM server.
The KVM server and supported packages must be installed on a CentOS machine with the required kernels and packages. For information about installing a KVM server and supported packages on CentOS, refer to http://wiki.centos.org/HowTos/KVM.
The Virtual Machine Manager (VMM) client must be installed on your local system.
You use virt-manager or virt-install to install Policy Enforcer VMs. See your host OS documentation for complete details on these packages.

The following are the minimum requirements for installing the Policy Enforcer VM.

2 CPU
8-GB RAM (16 GB recommended)
120-GB disk space

This topic includes:

Installing Policy Enforcer with virt-manager

You can install and launch Policy Enforcer with the KVM virt-manager GUI package.

Before You Begin

Ensure that sure you have already installed KVM, qemu, virt-manager, and libvirt on your host OS.

Procedure

To install Policy Enforcer with virt-manager:

Download the Policy Enforcer KVM image from the Juniper software download site.
On your host OS, type virt-manager. The Virtual Machine Manager appears.
Note You must have admin rights on the host OS to use virt-manager.
Click Create a new virtual machine. The New VM wizard appears .
Enter a name for the virtual machine, select Import existing disk image, and click Forward.
Browse to the location of the downloaded Policy Enforcer image and select it.
Select Linux from the OS type list and select Show all OS options from the Version list.
Select Red Hat Enterprise Linux 6 or later from the expanded Version list and click Forward.
Set the RAM to 8192 MB and set CPUs to 1. Click Forward.
Under Advanced Options, select Specify shared device name and enter the name of the bridge (typically br0) into the text box.
Click Finish. The VM manager creates the virtual machine and launches the Policy Enforcer console.

Installing Policy Enforcer with virt-install

The virt-install and virsh tools are CLI alternatives to installing and managing Policy Enforcer VMs on a Linux host.

Before You Begin

Ensure that sure you have already installed KVM, qemu, virt-install, and libvirt on your host OS.

Note You must have root access on the host OS to use the virt-install command.

Procedure

To install Policy Enforcer with virt-install:

Download the Policy Enforcer KVM image from the Juniper software download site.

On your host OS, use the virt-install command with the mandatory options listed in Table 301.

Note See the official virt-install documentation for a complete description of available options.

Table 301: virt-install Options

Command Option	Description
--name name	Name the Policy Enforcer VM.
--ram megabytes	Allocate RAM for the VM, in megabytes.
--cpu cpu-model, cpu-flags	Enable the vmx feature for optimal throughput. You can also enable aes for improved cryptographic throughput. Note: CPU flag support depends on your host OS and CPU. Use virsh capabilities to list the virtualization capabilities of your host OS and CPU.
--vcpus number	Allocate the number of vCPUs for the Policy Enforcer VM.
--disk path	Specify disk storage media and size for the VM. Include the following options: size=gigabytes device=disk bus=ide format=qcow2
--os-type os-type --os-variant os-type	Configure the guest OS type and variant.
--import	Create and boot the Policy Enforcer VM from an existing image.

The following example creates a Policy Enforcer VM with 8192 MB RAM, 1 vCPUs, and disk storage up to 120 GB:

hostOS# virt-install --name vPEM --ram 8192
--cpu SandyBridge,+vmx,-invtsc --vcpus=1 --arch=x86_64 --disk path=/mnt/pe.qcow2,size=120,device=disk,bus=ide,format=qcow2
--os-type linux --os-variant rhel6 --import

Configuring Policy Enforcer Settings

By default, when you create the Policy Enforcer VM through virt-manager or virt-install, the console window appears for you to set up and configure the Policy Enforcer settings. You can open the console at any time after the initial configuration to review or edit your settings.

Procedure

To configure Policy Enforcer settings:

Log in to your virtual machine using root and abc123 as the username and password, respectively. You will be required to change the password at a later step.
The welcome page appears.
Click OK.
The End User License Agreement (EULA) window appears.
Click Accept to acknowledge the EULA. If you do not agree with the EULA, click Cancel. Your configuration will stop and you will return to the main vSphere Client page.
The Network configuration page appears. See Figure 87.
Figure 87: Defining the Basic Network Configuration Settings

Enter the following configuration information.

Option	Description
Hostname	Enter the hostname for the Policy Enforcer virtual machine; for example, pe.juniper.net.
IP address	Enter the IP address for the Policy Enforcer virtual machine. Note: Make note of this IP address as you’ll need it in a later step.
Network mask	Enter the netmask for the Policy Enforcer virtual machine.
Default gateway	Enter the IP address of the default gateway that connects your internal network to external networks.
Primary DNS server	Enter the IP address of your primary system registered to join the Domain Name System (DNS).
Secondary DNS server	Enter the IP address of a secondary DNS server. Policy Enforcer uses this address only when the primary DNS server is unavailable.
Skip DNS servers check	Select this check box if you do not want to check basic network settings. By default, the system will ping the gateway to ensure it receives a response indicating your settings are correct.

Click Apply Changes.
Your network settings are applied. A progress window indicates the status.
When the system is finished updating your network settings, an NTP server window appears and prompts you to configure the NTP server list. See Figure 88.
Figure 88: Prompt for Configuring the NTP Servers
Click Yes to customize the NTP server list. Click No to use the default list of 0, 1, 2 and 3.centos.pool.ntp.org.
(Optional) Specify the NTP servers to use. See Figure 89. Click Apply Changes to accept your edits, Clear All to clear all fields in this window, or Cancel to discard any edits and continue to the next step.
Figure 89: Configuring the NTP Servers
The Root password change page appears. See Figure 90.
Figure 90: Changing the Root Password
Enter and re-enter a new administrator password for the Policy Enforcer virtual machine.
Password restrictions are listed in the screen.
Note Make note of this password as you’ll need it in a later step.
If you forget your password, see CentOS root password reset instructions.
Click OK.
The Juniper Networks Policy Enforcer page appears. See Figure 91.
Figure 91: Reviewing and Changing Your Configuration Settings

Select one of the options and press Enter.

Option	Description
Review configuration and finish setup	Lets you review the configuration settings you defined one last time before applying them to the Policy Enforcer virtual machine. We recommend that you do not change your configuration settings after Policy Enforcer is set up within Security Director.
Change...	Select a setting to update its value.
Troubleshooting menu	Lets you ping the default gateway and custom IP address and lets you perform a DNS lookup to verify that your settings are correct.

Option

Description

Review configuration and finish setup

Lets you review the configuration settings you defined one last time before applying them to the Policy Enforcer virtual machine.

We recommend that you do not change your configuration settings after Policy Enforcer is set up within Security Director.

Change...

Select a setting to update its value.

Troubleshooting menu

Lets you ping the default gateway and custom IP address and lets you perform a DNS lookup to verify that your settings are correct.

The Review configuration page appears. See Figure 92.

Figure 92: Reviewing Your Configuration Settings

Review your configuration settings and click Finish setup. To change any of the settings, click Change configuration.
When you click Finish setup, the configuration settings are applied to the Policy Enforcer virtual machine. A status page indicates the progress.
When done, the Setup Complete page appears.
Click Finish to return to the main vSphere Client page.
Note Each time you log in to the Policy Enforcer virtual machine, you are given the option to review or change any of these settings.

Connecting to the KVM Management Console

By default, when you create the Policy Enforcer VM the console window appears for you to set up and configure the Policy Enforcer settings. You can open the console at any time after the initial configuration to review or edit your settings. To do this, you must have the virt-manager package or virsh installed on your host OS.

Procedure

To connect to the Policy Enforcer console using virt-manager:

Launch virt-manager.
Highlight the Policy Enforcer VM you want to connect to from the list of VMs displayed.
Click Open.
Select View>Text Consoles>Serial 1. The Policy Enforcer console appears.

Procedure

To connect to the Policy Enforcer console with virsh:

Use the virsh console command on the Linux host OS. For example:
user@host# virsh console PE-kvm-2 Connected to domain PE-kvm-2
The Policy Enforcer console appears.

Installing Policy Enforcer with KVM

Installing Policy Enforcer with virt-manager

Before You Begin

Procedure

Installing Policy Enforcer with virt-install

Before You Begin

Procedure

Configuring Policy Enforcer Settings

Procedure

Connecting to the KVM Management Console

Procedure

Procedure

Related Documentation

Help us to improve. Rate this article.