Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Add a Tenant

You are here: Device Administration > Multi Tenancy > Tenants.

To add a tenant:

  1. Click + available on the upper-right corner of the Tenants page.

    The Create Tenant page appears.

  2. Complete the configuration according to the guidelines provided in Table 1.
  3. Click OK to save the changes. If you want to discard your changes, click Cancel.
Table 1: Fields on the Create Tenant Page

Field

Description

General Details

Name

Enter a name for the tenant.

Enter a unique string of alphanumeric characters, colons, periods, dashes, and underscores. No spaces are allowed; maximum length is 63 characters.

Routing Instance

By default, the tenant name is taken as the routing instance name.

Tenant Resource Profile

Profile Name

Displays the name of the resource profile.

Configured Resources

Displays the resources and its reserved or maximum quantity assigned for this resource profile.

Logical Systems/Tenants

Displays other logical systems and/or tenants using this resource profile.

Click one:

  • Add icon (+)—Adds resource profiles.

  • Edit icon (/)—Edits the selected resource profiles.

  • Search icon—Enables you to search a resource profile in the grid.

  • Filter icon—Enables you to filter the selected option in the grid.

  • Show Hide Column Filter icon—Enables you to show or hide a column in the grid.

Create-Edit Tenant Resource Profile

See Add a Resource Profile for details on creating and editing resource profile.

User Details

You can define tenant administrators and users.

Click one:

  • Add icon (+)—Create users.

  • Edit icon (/)—Edit the selected users.

  • Delete icon—Delete the selected users.

Create-Edit users

Username

Enter a username.

Maximum length is 64 characters.

Role

Select an option from the list to specify the role of the user:

  • Tenant Administrator

  • Read only Access User

    Note:

    Logical system or tenant Read Only user can only view the options but cannot modify them.

Password

Specify the password for the user.

Confirm Password

Confirm the password.

Assign Interfaces

Only one logical interface can be part of one tenant, whereas a tenant can have multiple logical interfaces.

Click One:

  • Enable/Disable —Enable or disable the physical interface.

  • Add icon (+)—Add logical interfaces.

  • Edit icon (/)—Edit the selected users.

  • Delete icon—Delete the selected users.

Create-Edit logical interfaces
General

Physical Interface Name

Displays the name of the Physical Interface.

Logical Interface Unit

Enter the logical interface unit.

Description

Enter the description.

VLAN ID

Enter the VLAN ID. VLAN ID is mandatory.

IPV4 Address

IPV4 Address

Click + and enter a valid IP address.

Subnet Mask

Enter a valid subnet mask.

Delete

Select the IPv4 address and click the delete icon to delete the address.

IPV6 Address

IPV6 Address

Enter a valid IP address.

Subnet Mask

Enter a valid subnet mask.

Delete

Select the IPv6 address and click the delete icon to delete the address.

Zone Configuration

Click One:

  • Add icon (+) — Create security zones.

  • Edit icon (/) —Edit the selected security zones.

  • Delete icon (X)—Delete the selected security zone.

  • Search - Search for a security zone.

Create-Edit Security Zones
General

Name

Enter a valid name of the zone.

Description

Enter a description of the zone.

Application Tracking

Enables the application tracking support.

Source Identity Log

Enable source identity log for this zone.

Interfaces

Select an interface from the Available column and move it to Selected column.

Selected interfaces

Displays the selected interfaces.

System Services Options

Select system services from the following options:

Note:

Select the Except check box to allow services other than the selected services.

  • all—Specify all system services.

  • any-service—Specify services on entire port range.

  • appqoe—Specify the APPQOE active probe service.

  • bootp—Specify the Bootp and dhcp relay agent service.

  • dhcp—Specify the Dynamic Host Configuration Protocol.

  • dhcpv6—Enable Dynamic Host Configuration Protocol for IPV6.

  • dns—Specify the DNS service.

  • finger—Specify the finger service.

  • ftp—Specify the FTP protocol.

  • http—Specify the web management using HTTP.

  • https—Specify the web management using HTTP secured by SSL.

  • ident-reset—Specify the send back TCP RST IDENT request for port 113.

  • ike—Specify the Internet key exchange.

  • lsping—Specify the Label Switched Path ping service.

  • netconf—Specify the NETCONF Service.

  • ntp—Specify the network time protocol service.

  • ping—Specify the internet control message protocol.

  • r2cp—Enable Radio-Router Control Protocol service.

  • reverse-ssh—Specify the reverse SSH Service.

  • reverse-telnet—Specify the reverse telnet Service.

  • rlogin—Specify the Rlogin service

  • rpm—Specify the Real-time performance monitoring.

  • rsh—Specify the Rsh service.

  • snmp—Specify the Simple Network Management Protocol Service.

  • snmp-trap—Specify the Simple Network Management Protocol trap.

  • ssh—Specify the SSH service.

  • tcp-encap—Specify the TCP encapsulation service.

  • telnet—Specify the Telnet service.

  • tftp—Specify the TFTP

  • traceroute—Specify the traceroute service.

  • webapi-clear-text—Specify the Webapi service using http.

  • webapi-ssl—Specify the Webapi service using HTTP secured by SSL.

  • xnm-clear-text—Specify the JUNOScript API for unencrypted traffic over TCP.

  • xnm-ssl—Specify the JUNOScript API Service over SSL.

Protocols

Select a protocol from the following options:

Note:

Select the Except check box to allow protocols other than the selected protocols.

  • bfd—Bidirectional Forwarding Detection.

  • bgp—Broder Gateway protocol.

  • dvmrp—Distance Vector Multicast Routing Protocol.

  • igmp—Internet group management protocol.

  • ldp—label Distribution Protocol.

  • msdp—Multicast source discovery protocol.

  • nhrp—Next Hop Resolution Protocol.

  • ospf—Open shortest path first.

  • ospf3—Open shortest path first version 3.

  • pgm—Pragmatic General Multicast.

  • pim—Protocol independent multicast.

  • rip—Routing information protocol.

  • ripng—Routing information protocol next generation.

  • router-discovery—Router Discovery.

  • rsvp—Resource reservation protocol.

  • sap—Session Announcement Protocol.

  • vrrp—Virtual Router redundancy protocol.

Traffic Control Options

Enable this option to send RST for NON-SYN packet not matching TCP session.