Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Juniper Identity Management Service Overview

Juniper Identity Management Service (JIMS) is a standalone service application that runs on Microsoft Windows. The JIMS application has the following two components:

  • JIMS Collector—Collects and maintains an in-memory cache of user, device, and group information from Active Directory domains or from a syslog client.

    JIMS Collector monitors and collects data from Active Directory every 30 seconds. After collecting the data, JIMS Collector automatically pushes this data to the local JIMS Server and Juniper Secure Edge when JIMS Collector is onboarded on Juniper Secure Edge.

  • JIMS Server—Is installed with JIMS Collector and manages on-premises SRX Series Firewalls. When you use Juniper Secure Edge, JIMS Collector pushes identity information to Juniper Secure Edge when configured.

Juniper Secure Edge supports JIMS Collector Release 1.7.0 or later.

Table 1: JIMS Collector Communication Ports
Connection Port

JIMS Collector connects to directory services, such as Microsoft Active Directory, using LDAP or LDAPS.

  • LDAP—TCP port 389

  • LDAPS—TCP port 636

JIMS Collector connects to identity Producers, such as Microsoft Domain Controllers or Microsoft Exchange Server, using MSRPC.

TCP port 135

JIMS Collector connects to the SYSLOG server identity producer using internal communications. The SYSLOG server listens to TCP and UDP port for incoming syslog messages.

TCP and UDP port 514

JIMS Collector connects to the PC Probe identity producers using internal communications. PC Probe sends outbound Windows Management Instrumentation (WMI) requests to computers using TCP ports.

TCP ports range 49152 to 65535

JIMS Collector pushes data to Juniper Secure Edge using TLS over a TCP port.

TCP port 443

On-premises SRX Series Firewalls pull data from the local JIMS Server.

  • TCP port 443

  • TCP port 591 for JWeb support

Use the JIMS page to add and manage JIMS Collectors and view the JIMS Collector statistics. To access this page, select Secure Edge > Identity > JIMS.

Note:

The detailed view displays the number of times JIMS Collector connected to the JIMS server to push identity-related data, such as domains, users, device, groups, and sessions.

Field Descriptions - JIMS Page

Note:

The widgets on the top section of the JIMS page display the number of times identity-related statistics, such as domains, users, device, groups, and sessions, is collected from JIMS Collector.
Table 2: Fields on the JIMS Page

Field

Description

Domains

The number of domains.

Users

The number of active users.

Devices

The number of active devices.

Groups

The number of groups.

Sessions

The number of active sessions.
JIMS Collectors

Collector Identifier

The name of the Microsoft Windows server where JIMS Collector is installed.

Version

The version of JIMS Collector that is installed on the Microsoft Windows server.

Current State

The current state of JIMS Collector.

Description

The user description that the JIMS Collector UI displays.

Last Update

The timestamp when JIMS Collector last connected to the JIMS server for an update.

Related Documentation