unified-access-control (Services)
Syntax
unified-access-control {
captive-portal redirect-policy-name{
redirect-traffic (all | unauthenticated);
redirect-url redirect-url;
}
certificate-verification [ optional | required | warning ];
infranet-contoller host-name {
address ip-address;
ca-profile [ca-profile];
interface interface-name;
password password;
port port-number;
server-certificate-subject subject;
}
interval seconds;
test-only-mode;
timeout seconds;
timeout-action (close | no-change | open);
traceoptions {
file {
filename;
files number;
match regular-expression;
(no-world-readable | world-readable);
size maximum-file-size;
}
flag flag;
no-remote-trace;
}
}
Hierarchy Level
[edit services]
Description
Enabling tracing can adversely impact scale and performance and may increase security risk. We strongly recommend using the trace, tracing, or traceoptions commands only under the guidance of a JTAC support engineer. After collecting the debug information, immediately disable tracing to minimize risk and restore normal system performance.
Use this statement to configure the SRX Series Firewall to act as a Junos OS Enforcer in a Unified Access Control (UAC) deployment. When deployed as a Junos OS Enforcer, the SRX Series Firewall enforces the policies that are defined on the UAC’s IC Series device.
Required Privilege Level
services—To view this statement in the configuration.
services-control—To add this statement to the configuration.
Release Information
Statement introduced in Junos OS Release 9.4.