jeb
Syntax
jeb {
max-seed-size max-seed-size;
port port;
rbg (default-rng | hmac-drbg);
tls {
cert-bundle cert-bundle;
certificate certificate;
key key;
}
}
Hierarchy Level
[edit system services]
Release Information
Statement introduced in Junos OS Release 19.1R1.
Description
Configure a Juniper Entropy Beacon (JEB) server. JEB can be used to feed high quality entropy over the network from a SRX345 Services Gateway to entropy-starved clients.
Options
max-seed-size—Maximum
allowed size in bytes for a requested entropy seed
Default: 4096
Range: 1 through 65536
port—Port to use for
JEB service
Default: 57005
Range: 1025 through 65535
rbg—Type of random
bit generator (RBG) to use for generating entropy seeds
Values:
default-rng—Default cryptographically secure pseudorandom number generator (CSPRNG)
hmac-drbg—Deterministic RBG detailed in NIST SP 800-90A
If you want to use hmac-drbg, it must be configured under the [edit system rng] hierarchy before being configured for the JEB server.
TLS—Configure TLS attributes
for JEB services
cert-bundle—Path to
the certificate bundle that is used by the server to authenticate
the client
certificate—Path to
the server certificate
key—Path to the server
key
Required Privilege Level
admin