Authentication and Access Control
- JIMS
support FQDN as primary and secondary address (SRX1500, SRX4100, SRX4200, SRX4600,
SRX5400, SRX5600, SRX5800, and vSRX3.0)—Starting in Junos OS Release 23.2R1, you can
get Fully Qualified Domain Names (FQDN) as primary & secondary support where each FQDN
can have several entries per FQDN resolving one or more JIMS server for resilience purpose
at
edit services user-identification identity-management connection (primary | secondary) address
hierarchy level.[See identity-management.]
-
JIMS support Junos PKI infrastructure (SRX1500, SRX4100, SRX4200, SRX4600, SRX5400, SRX5600, SRX5800, and vSRX3.0)—Starting in Junos OS Release 23.2R1, you configure ca-profile under
set security pki
and assignca-profile
under JIMS by usingca-profile
option at theedit services user-identification identity-management connection (primary | secondary)
hierarchy level. You can perform CRL and OCSP checks based on settings underset security pki
for the corresponding ca-profile.With the introduction of a new
ca-profile
, we will deprecate the existingca-certificate
option at theedit services user-identification identity-management connection (primary | secondary)
hierarchy level.[See identity-management.]