Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Installing the Juniper ATP Appliance All-in-One Hardware Appliance

For hardware specifications and set up instructions, refer to the Juniper Networks Advanced Threat Prevention Appliance Hardware Guide. for your appliance model.

To Install the Juniper ATP Appliance Server

  1. Access and download the raw image from the URL provided by Juniper and convert the raw image to a bootable image. Create a bootable USB drive using this image. Kingston USB flash drives are recommended. There are additional components (guest images) required for full functionality. These are downloaded automatically at 12:00am local time after the initial system configuration is complete. (Systems are shipped in PST timezone by default.)
  2. Connect the eth0 management and eth1 network interfaces on the server that will host the Juniper ATP software and confirm they are active links before beginning the software installation. Image installation requires at least an active eth0 connection.
  3. Insert the USB drive containing the bootable image to the USB port of the server that will host the Juniper ATP All-in-One software.
  4. Use the down arrow keys to navigate the Boot Manager interface and down-arrow again to select the USB port containing the image.
  5. At the menu display, select only this option: INSTALL Juniper ATP SOFTWARE.
  6. Follow the prompt to remove the USB; the system will reboot itself. This reboot may take up to 20 minutes.
  7. After reboot, the Juniper ATP CLI prompt appears. At the CLI, log in to the Juniper ATP CLI with the username admin and the password 1JATP234.
  8. You will be prompted to insert the 2nd USB drive and to install the analysis engine images; answer the prompts:

    Do you want to update the guest images automatically [y/n]: y

    Note:

    The guest image updates happen automatically once the ATP appliance is connected to Internet. You can also manually update the guest image from the ATP Appliance UI.

  9. Next, you must accept the EULA by selecting Yes when prompted.
  10. You will be prompted to change the default CLI password. Enter a new password to begin configuring the system.
    Note:

    By default, ATP Appliance is installed as an All-In-One appliance. If you don’t want to install the All-in-One Appliance, select one of the following types: 1 Core/Central Manager 2 Traffic Collector 3 Email Collector 4 Manager Central Managers (MCM) 5 Return current form factor, i.e. All-In-One. After after the initial installation, you can change the appliance type but all data files related to the current type are lost.

    Note:

    Also note, if you are using MCM or Backup core with a previous release, you must convert back to Core/CM before upgrading and using the new CLI “set appliance-type” command to change the appliance type.

Note:

Starting in version 5.0.3, ATP Appliance supports FIPS mode, allowing ATP Appliance to operate in FIPS 140-2 level 1 compliant mode. FIPS mode is enabled or disabled using the CLI. If you intend to enable FIPS mode, ATP Appliance passwords and keys must meet stronger FIPS mode specifications. For instructions for enabling FIPS mode and prerequisites, see FIPS Mode Overview.
Note:

To wipe the device, it is recommended you use DBAN software. Those instructions can be found here: https://www.lifewire.com/how-to-erase-a-hard-drive-using-dban-2619148
Note:

If the new Juniper ATP Appliance has the OS version 5.0.1 or 5.0.4, make sure to follow the installation instructions in this topic to re-image the appliance.

See Also