Configure Site Survivability Settings

Enable site survivability on selected Mist Edge devices to ensure that authorized clients can access your network even if you lose your connection to the cloud.

Access Assurance site survivability keeps the Juniper Mist Access Assurance services up even when the cloud connectivity is down, by maintaining a cache of clients that were successfully authenticated in the past. In this setup, Access Assurance services run on a specified Mist Edge device inside the customer site. This Mist Edge acts as a backup when the WAN links are down.

Requirements:

You need Juniper Mist Access Assurance subscription.
At least one Mist Edge should be assigned to the site.
Endpoints (laptops, mobiles and IoT devices) should be authenticated and authorized into your corporate network.
WAN connectivity to the cloud should be highly available.

To configure Access Assurance site survivability:

Click Organization > Site Configuration to go to the list of sites.
Click the site in which you want to configure Access Assurance site survivability.
The site page is displayed.
Scroll down to Access Assurance Site Survivability tile.
Select the Enabled check box on the Access Assurance Site Survivability tile.
Configure the settings as described below:
- Caching Period—Enter the number of days (1 to 30) for which a cache of each NAC client should be maintained.
- Default MAB VLAN—Enter the VLAN ID or VLAN Name of the VLAN for unknown MAB clients.
- Default 802.1X VLAN—Enter the VLAN ID or name of the VLAN for unknown 802.1X clients that pass EAP-TLS authentication.
- Mist Edge IPs—Enter the IP addresses of the Mist Edges acting in the site survivability mode.
Save the site configuration by clicking Save on the upper right of the page.