Testing Junos OS Enforcer Policy Access Decisions Using Test-Only Mode (CLI Procedure)

When configured in test-only mode, the SRX Series or J Series device enables all UAC traffic to go through regardless of the UAC policy settings. The device logs the UAC policy’s access decisions without enforcing them so you can test the implementation without impeding traffic.

Before you begin:

1. Enable UAC through the relevant Junos OS security policies. See Enabling UAC in a Junos OS Environment (CLI Procedure)
2. Configure the SRX Series and J Series devices as a Junos OS Enforcer. See Configuring Communications Between the Junos OS Enforcer and the Infranet Controller (CLI Procedure).
3. If you are connecting to a cluster of Infranet Controllers, enable failover options. See Configuring Junos OS Enforcer Failover Options (CLI Procedure).

To activate or deactivate test-only mode, enter the following configuration statement:

Related Topics

• Junos OS Feature Support Reference for SRX Series and J Series Devices
• Understanding Junos OS Enforcer Policy Enforcement
• Verifying Junos OS Enforcer Policy Enforcement