TechLibrary

Navigation

Table of Contents

Guide That Contains This Content

[+] Expand All

[-] Collapse All

Creating Secure Fabric and Sites

To access this page, click Devices>Secure Fabric.

You create sites within your secure fabric from the secure fabric page.

Plan out your sites in advance. A site is a grouping of network devices, including firewalls and switches, that contribute to threat prevention.
Keep in mind that when you create a site, you must identify the perimeter firewalls so you can enroll them with Sky ATP.
If you want to enforce an infected host policy within the network, you must assign a switch to the site.
Note that devices cannot belong to multiple sites.

To create a site within your secure fabric:

Select Devices>Secure Fabric.
Click the + icon.
Complete the configuration by using the guidelines in Table 1 below.
Click OK.
Create a new site and assign or reassign devices to a site by following the guidelines inTable 2 below.

Table 1: Fields on the Create Site Page

Field	Description
Site	Enter a unique string that must begin with an alphanumeric character and can include underscores; no spaces allowed; 63-character maximum.
Description	Enter a description; maximum length is 1024 characters. You should make this description as useful as possible for all administrators.

Table 2: Fields on the Sites Main Page

Field	Description
Device Name	Click an existing device to edit it or click Add Devices. Select the check box beside the devices in the Unassigned Devices list and click the > icon to move them to the Selected list. The devices in the Selected list will be included in the site. Indicate whether a device is a firewall or a switch by selecting the check box. Only perimeter SRX Series devices can be enrolled with Sky ATP, therefore the system must know which devices those are. Note: Firewall devices are automatically enrolled with Sky ATP as part of this step. No manual enrollment is required. Note: If you want to enforce an infected host policy within the network, you must assign a switch to the site.
IP Address	Click an existing address or Add Devices in the IP Address field. Select the check box beside the switches in the Unassigned Devices list and click the > icon to move them to the Selected list. The devices in the Selected list will be included in the site. Indicate whether a device is a firewall or a switch by selecting the check box.
“Drag and Drop” devices	You can reassign devices to sites by dragging them from the Devices Name column on the main page to the Site column.

Field

Description

Device Name

Click an existing device to edit it or click Add Devices.

Select the check box beside the devices in the Unassigned Devices list and click the > icon to move them to the Selected list. The devices in the Selected list will be included in the site.

Indicate whether a device is a firewall or a switch by selecting the check box. Only perimeter SRX Series devices can be enrolled with Sky ATP, therefore the system must know which devices those are.

Note: Firewall devices are automatically enrolled with Sky ATP as part of this step. No manual enrollment is required.

Note: If you want to enforce an infected host policy within the network, you must assign a switch to the site.

IP Address

Click an existing address or Add Devices in the IP Address field.

Select the check box beside the switches in the Unassigned Devices list and click the > icon to move them to the Selected list. The devices in the Selected list will be included in the site. Indicate whether a device is a firewall or a switch by selecting the check box.

“Drag and Drop” devices

You can reassign devices to sites by dragging them from the Devices Name column on the main page to the Site column.

TechLibrary

Related Documentation

Creating Secure Fabric and Sites

Related Documentation

Modified: 2016-12-08