Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

New and Changed Features

 

This section lists the changes in behavior of Juniper Sky ATP features in Junos OS Release 19.3R1 for Juniper Sky ATP.

Onboarding Changes

There is now an alternative onboarding procedure you can use to perform all enrollment steps using the CLI on the SRX Series device without having to access the Web Portal. Run the request services advanced-anti-malware enroll command on the SRX Series device to begin the process. Both the original enrollment process that obtains an op script from the Web Portal and the new CLI-only enroll process are valid procedures. Use either one.

See the Administration Guide for details.

Block File with Unknown Verdict and Send User Notification on Block

For advanced anti-malware policies, you can now block a file when the verdict is unknown. You can also send a user notification when a block occurs. We’ve introduced the following new commands: set services advanced-anti-malware policy p1 http file-verdict-unknown (block|permit) and set services advanced-anti-malware policy p1 http client-notify (message|file|redirect-URL).

See the CLI Reference Guide for details: set services anti-malware policy and request services advanced-anti-malware redirect-file

Automatically Expire Blocked Hosts

In the Juniper Sky ATP Web UI, you can navigate to Configure>Global Configuration>Infected Hosts to set an expiration time for hosts marked as infected based on IP address and threat level. After the designated time-frame, all hosts or a range of IP addresses are no longer blocked. This is useful if your network allocates new IP addresses on a regular schedule using DHCP. See the Administration Guide for details.

Static Detection of ELF files

The ELF (Executable and Linkable Format) file type is now supported for static analysis, automatically included in the Executable category under File Inspection Profiles.