Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


New and Changed Features

This section describes the new features and enhancements to existing features in Junos Space Security Director Release 21.3R1.

  • Onboard devices to Juniper® Security Director Cloud—Starting in Security Director Release 21.3R1, you can add Security Director managed devices to Juniper Security Director Cloud. You can add only root devices or the primary root device in a cluster device. Juniper Security Director Cloud automatically discovers the secondary device in a cluster. You cannot add MX Series, cSRX, logical system, and tenant system devices to Juniper Security Director Cloud.

  • Root certificates—Starting in Security Director Release 21.3R1, you can configure multiple certificates in the SSL proxy profile.

  • Action for out-of-band policy changes—Starting in Security Director Release 21.3R1, during automatic synchronization of out-of-band firewall, intrusion prevention system (IPS), and NAT policy changes from a device to Security Director, you can choose from rename object, keep existing value, or overwrite with imported value. By default, Rename Object is selected.

  • RT_FLOW_SESSION logs support—Security Director does not use AppTrack logs, instead it retrieves the data from RT_FLOW_SESSION logs. For application visibility feature to function and to view application data in Security Director, session-close log should be enabled at rule level.

    For example: set security policies from-zone untrustZone to-zone trustZone policy policy13 then log session-close

For new features and enhancements in Policy Enforcer, see Policy Enforcer Release Notes.