Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Software Installation and Upgrade

  • Support for SZTP (EX4100-H-12MP)—Use RFC-8572-based secure zero-touch provisioning (SZTP) to bootstrap your remotely located network devices that are in a factory-default state. SZTP enables mutual authentication between the bootstrap server and the network device before initiating ZTP.

    To enable mutual authentication, the system generates a unique digital voucher based on the Digital Device ID or Cryptographic Digital Identity (DevID) of the network device. The DevID is embedded inside Trusted Platform Module (TPM) 2.0 chip on the network device. We issue a digital voucher to customers for each eligible network device.

    [See Secure Zero Touch Provisioning and Generate Secure ZTP Vouchers.]

  • Hardware root of trust and secure boot support (EX4000-12MP, EX4000-24MP, and EX4000-48MP)—You can enhance the security of your system with the hardware root of trust (HRoT). HRoT is a hardware-based security feature that verifies the integrity of the firmware, ensuring it has not been compromised or modified without authorization. With HRoT, you establish a trusted foundation starting from the hardware, making it highly resistant to tampering and enabling a secure boot process where only verified firmware is loaded.

    The platforms provide the newly introduced HRoT support along with secure boot support to authenticate and verify the loaded software image while also preventing software-based attack.

    [See Junos OS Overview.]