You are here: Administration > Sky ATP Enrollment.
Use this page to enroll your SRX device with Juniper Sky Advanced Threat Prevention (Juniper Sky ATP).
Juniper Sky ATP is a cloud-based threat identification and prevention solution. It protects your device from malware and sophisticated cyber threats by inspecting e-mail and web traffic for advanced threats. Juniper Sky ATP integrates with the SRX Series devices to simplify its deployment and enhance the anti-threat capabilities of the SRX device.
Before enrolling a device:
Ensure that you have a Juniper Sky ATP account with an associated license (free, basic, or premium) to configure a Juniper Sky ATP realm. The license controls the features of the Juniper Sky ATP. For more information on the Juniper Sky ATP account, see Registering a Juniper Sky Advanced Threat Prevention Account.
Decide which region the realm you create will cover because you must select a region when you configure a realm.
Ensure the device is registered in the Juniper Sky ATP cloud portal.
In the CLI mode, configure set security forwarding-process enhanced-services-mode on your SRX300, SRX320, SRX340, SRX345, and SRX550M devices to open ports and get the device ready to communicate with Juniper Sky ATP.
To enroll your device with Juniper Sky ATP from J-Web:
Select an option in the Proxy Profile list and proceed with Step 2.
Note
The list displays the existing proxy profiles that you have created using the Proxy Profile page (Configure > Security Services > Security Policy > Objects > Proxy Profiles).
The SRX device and Juniper Sky ATP communicates through the proxy server if a proxy profile is configured. Otherwise, they directly communicate with each other.
Or click Create Proxy to create a proxy profile.
The Create Proxy Profile page appears.
Complete the configuration by using the guidelines in Table 332.
Click OK.
A new proxy profile is created.
Click Apply Proxy.
Applying proxy enables the SRX device and Juniper Sky ATP to communicate through the proxy server.
Table 332: Fields on the Create Proxy Profile Page
Field | Action |
|---|---|
Profile Name | Enter a name for the proxy profile. |
Connection Type | Select the connection type server from the list that proxy profile uses:
|
Port Number | Select a port number for the proxy profile. Range is 0 to 65535. |
Click Enroll.
The Sky ATP Enrollment page appears.
Note If there are any existing configuration changes, a message appears for you to commit the changes and then to proceed with the enrollment process.
Complete the configuration by using the guidelines in Table 333.
Click OK.
The SRX device enrollment progress, successful message, or any errors will be shown at the end of the SKY ATP Enrollment page.
Note
A new realm is created if you have enabled Create New Realm and then the SRX device is enrolled to Juniper Sky ATP. If there is any existing enrollment for the same SRX device, CLI sends the data to Juniper Sky ATP portal to do the duplicate validation during the enrollment process. You cannot check for the duplicate validation through J-Web.
Click Diagnostics to troubleshoot any enrollment errors.
Table 333: Fields on the Sky ATP Enrollment Page
Field | Description |
|---|---|
Create New Realm | By default, this option will be disabled if you have a Sky ATP account with an associated license. Enable this option to add a new realm if you do not have a Sky ATP account with an associated license. |
Location | Select a region of the world from the list. |
Enter your E-mail address. | |
Password | Enter a unique string at least eight characters long. Include both uppercase and lowercase letters, at least one number, and at least one special character (~!@#$%^&*()_-+={}[]|:;<>,./?); no spaces are allowed, and you cannot use the same sequence of characters that are in your e-mail address. |
Confirm Password | Reenter the password. |
Company Name | Enter a company name to enroll into the realm. A company name can only contain alphanumeric characters, special characters (underscore and dash). |
Realm | Enter a name for the security realm. This should be a name that is meaningful to your organization. A realm name can only contain alphanumeric characters and the dash symbol. Once created, this name cannot be changed. |
To remove any existing SRX device enrollment:
The Sky ATP UnEnrollment page appears.
The SRX device unenrollment progress, successful message, or any errors will be shown at the end of the SKY ATP Enrollment page.
Note Click Diagnostics to troubleshoot any enrollment errors.