Devices Overview
The Devices page displays your devices that are managed by Juniper Security Director Cloud. You can view device information, such as the software release version, the platform, and various status indicators. You can also view a device inventory details, export the device list to a CSV file, rollback the configuration version, resynchronize, reboot, and upgrade a device.
To access this page, click .
Field Descriptions - Devices Page
The following table describes the fields on the Devices page.
|
Fields |
Description |
|---|---|
|
Host Name |
Displays the name of the device, device cluster, or multinode high availability (MNHA) pair. An MNHA pair is named by combining the device names. The MNHA deployment mode is displayed beside the name. For example, MNHA - Routing Mode |
|
Device Group |
Displays the name of the group with which the device is associated. |
|
Inventory Status |
The Inventory Status column displays the discovery and synchronization status of the device with Juniper Security Director Cloud after it is added. The possible statuses are:
|
|
Device Config Status |
The possible statuses are:
|
|
Management Status |
Displays the connectivity status of the device with Juniper Security Director Cloud. You can manage the device from Juniper Security Director Cloud when the Up status is displayed. The possible statuses are:
|
|
Device Health Status |
Displays the resources used by the device, such as CPU processing power, memory, and storage. The health status is displayed only for devices with paid subscriptions. If you don't have a subscription or only a trial subscription, Not Subscribed status is displayed. The status of the device is color-coded as follows:
|
|
Subscriptions |
Displays the subscriptions added to the device.
|
|
OS Version |
Displays the OS firmware version running on the device Unknown status is displayed for devices that are not managed by Juniper Security Director Cloud. |
|
Model |
Displays the model number of the device. For devices that are not managed by Juniper Security Director Cloud, the product details are discovered through SNMP. If the product details cannot be discovered, Unknown status is displayed. |
Field Descriptions - Device Details Pane
The following table describes the fields on the Device Details pane for standalone devices and clusters:
|
Fields |
Description |
|---|---|
| Basic Information | |
|
Host Name |
Displays the name of the device. |
|
OS Version |
Displays the OS firmware version running on the device. This field displays Unknown for devices that Juniper Security Director Cloud doesn't manage. |
|
Family |
Displays the device family of the selected device. For devices that Juniper Security Director Cloud doesn't manage, the family is the same as the provided vendor name. The field displays Unknown if the vendor name is not available and if SNMP is not used or has failed. |
|
Product Series |
Displays the model number of the device. For devices that Juniper Security Director Cloud doesn't manage, the platform details are discovered through SNMP. If the platform details cannot be discovered, the field displays Unknown. |
|
Serial Number |
The serial number of the device chassis. This field displays Unknown for devices that Juniper Security Director Cloud doesn't manage. |
| Status Information | |
|
Management Status |
Displays the connection status of the device in Juniper Security Director Cloud.
|
|
Inventory Status |
Displays the current state of the device configuration.
|
The following table describes the fields on the Device Details pane for each device in an MNHA pair.
|
Fields |
Description |
|---|---|
|
Status |
|
|
Node status |
Displays the overall status of the node or device. |
|
Cold sync |
Displays the cold synchronization process status. The process is initiated to resynchronize control-plane services when the node is active. During this process, SRG states information is exchanged between the nodes. |
|
ICL |
Displays the interchassis link (ICL) status. An ICL is a logical IP link established using IP addresses that are routable in the network. |
|
Encrypted |
Displays the ICL encryption status. |
|
Local / Peer ID |
Identifies the node in the cluster. The local ID of the second node is displayed as the peer ID of the first node. Similarly, the local ID of the first node is displayed as the peer ID of the second node. |
|
BFD |
Displays the bidirectional forwarding detection (BFD) protocol configuration such as multiplier and minimum interval. For example, if 3*200 ms is configured, 3 indicates the multiplier and 200 ms indicates the minimum interval. |
|
ICD |
Displays the status of the interchassis datapath (ICD) which is an additional link used to handle asymmetric traffic. |
|
Path monitoring SRG0 |
A method that uses ICMP to verify the reachability of the IP address. The default interval for ICMP ping probes is 1 second. |
|
SRG |
|
|
SRG0 |
A unit that manages all control plane stateless services such as firewall, NAT, and ALG. SRG0 is active on all participating nodes and handles symmetric security flows. |
|
Health status |
Indicates the health status of the SRG. |
|
System integrity check |
Displays the node’s ability to eliminate single points of failure to ensure continuous operations over an extended period. |
|
Local / Peer ID |
Identifies the node in the cluster. The local ID of the second node is displayed as the peer ID of the first node. Similarly, the local ID of the first node is displayed as the peer ID of the second node. |
|
At failure |
Displays the link status in case of a node failure |
|
SRG x, where x is greater than 0. |
A unit that manages control plane stateful services. For example, IPsec VPN or virtual IPs in hybrid or default gateway mode. |
|
Health status |
Displays the health status of the node. The possible statuses are Healthy, Unhealthy, and Unknown. |
|
Control plane status |
Displays the state of the control plane services. |
|
Current state |
Displays if the device is in active or backup mode. |
|
Failover readiness |
Displays the readiness of the node in case of a failover. A failover happens when one node detects a failure (hardware/software and so on) and traffic transitions to the other node in a stateful manner. |
|
Deployment type |
Displays the deployment type of the Services Redundancy Group (SRG). The possible values are Cloud (Cloud deployment), Hybrid (Hybrid deployment), Routing (Routing deployment), and Switching (switching/default gateway deployment). |
|
Managed services |
Displays the services enabled for the services redundancy group (SRG). |
|
Activeness priority |
Displays the priority for the SRG1 in a node to take up the active role if both the nodes initialize at the same time. |
|
Process packet on backup |
Displays the packet forward engine status to forward packets on backup node for the corresponding SRG. |
|
Preemption |
Displays the preemption status of the node. If preemption is enabled for both nodes, the node with higher activeness priority always remains active after a failover. |
|
BFD path monitoring Note:
BFD path monitoring information is not displayed for devices running Junos OS Release 22.4R1 and 22.4R2. |
Displays the bidirectional forwarding detection (BFD) protocol configurations and test status. |
|
Signal route Note:
Signal route information is not displayed for devices running Junos OS Release 22.4R1 and 22.4R2. |
Displays the active and backup signal route configuration and status. |
|
Activeness probe Note:
Activeness probe information is not displayed for devices running Junos OS Release 22.4R1 and 22.4R2. |
Displays the status and details of the probe configured for activeness determination. |
Field Descriptions - Device Inventory Page > Overview Tab
The following table describes the fields on the Overview tab in the Device Inventory page.
| Field | Description |
|---|---|
|
Chassis |
Displays the port usage and health status of the hardware devices. |
|
System Information |
Displays the following details of the devices:
|
|
Subscriptions |
Displays the subscriptions attached to the device and the status of the subscriptions. |
|
Rules |
Displays the number of rules configured for the device along with the number of used and unused rules. |
|
Memory |
Displays the storage resources used by the device. |
|
Security Packages |
Displays the name of the installed security packages. |
|
CPU |
Displays the CPU processing power used by the device. |
|
Licenses |
Displays the number of times an item is licensed. |
|
Chassis |
Displays the port usage and health status of the hardware devices. |
Field Descriptions - Device Inventory Page > Chassis Tab
The following table describes the fields on the Chassis tab in the Device Inventory page.
| Field | Description |
|---|---|
|
Model |
Displays the model of the selected module. |
|
Serial number |
Displays the serial number of the selected module. |
|
Module |
Displays the module of the device. |
|
Type |
Displays the type of the device. |
|
Model |
Displays the model of the device. |
|
Version |
Displays the version of the device software. |
|
Part Number |
Displays the part number of the device. |
|
Serial Number |
Displays the serial number of the device. |
|
Physical Interfaces |
Displays standard information about physical interfaces connected to the device in the type-/fpc/pic/port format where type indicates the media type that identifies the network device. For example, ge-0/0/6. Click View to go to the Interfaces tab. |
|
Description |
Displays an optional description for this interface configured on the device. The description can be a text string that contains up to 512 characters. Longer strings are truncated to 512 characters. If no information is available, the column is empty. |
Field Descriptions - Device Inventory Page > Interfaces Tab
The following table describes the fields in the Interfaces tab.
| Field | Description |
|---|---|
|
Interface Name |
Displays the interface that is used to connect to Juniper Security Director Cloud. |
|
IPv4 Address |
Displays the IPv4 address assigned to the logical interface. If you do not add a logical interface to a physical interface, this column will be blank. |
|
IPv6 Address |
Displays the IPv6 address assigned to the logical interface. The IPv6 address is displayed only if the device has an IPv6 address. If you do not add a logical interface to a physical interface, this column will be blank. |
|
IfIndex |
Displays the unique identifying number associated with a physical or logical interface. |
|
Admin Status |
Displays the administrative status of the physical interface, which can be Up or Down. |
|
Operational Status |
Displays the link status of the interface, which can be Up or Down. |
|
VLAN ID |
Displays the VLAN ID assigned to the logical interface. If you do not add a logical interface to a physical interface, this column will be blank. |
|
MTU |
Displays the maximum transmission unit (MTU) size on the physical interface. |
|
Speed |
Displays the speed (MBps) at which the interface is running. |
|
Duplex Mode |
Displays the connection characteristic.
|
|
Link Type |
Displays the link level type of the physical interface. |
|
Linecard |
Displays the number of interface slots. |
Field Descriptions - Device Inventory Page > Device Administration Tab
The following table describes the fields on the Licenses tab.
| Field | Description |
|---|---|
|
Name |
Displays the name of the license associated with the device. |
|
Status |
Displays the status of the license, which can be:
Only valid licenses are included in the license count calculation. |
|
Expiry Date |
Displays the expiry date of the licensed feature. |
|
Total Licenses |
Displays the total licenses available for the feature. |
|
Used Licenses |
Displays the total licenses used for the feature. |
|
Required Licenses |
Displays the total licenses required for the feature. |
|
Install License |
The option to add licenses to the device. See Add Licenses. |
The following table describes the fields on the Certificates tab.
| Field | Description |
|---|---|
|
Certificate ID |
Displays the unique identification of the certificate. |
|
Issuer Organization |
Displays the details of the organization that issued the certificate. |
|
Status |
Displays the expiration status of the certificate:
|
|
Expiry Date |
Displays the date and time when the certificate expires. |
|
Encryption Type |
Displays the type of the certificate:
|
|
Import |
The option to import certificates into the device. See Import Device Certificates. |
|
Generate Default Trusted CAs |
The option to generate default trusted CA profiles. See Import Device Certificates. |
The following table describes the fields on the Software tab.
| Field | Description |
|---|---|
|
Software Name |
Displays the name of the installed software package. |
|
State Type |
State Type |
|
Software Description |
Displays the description of the software package. |
|
Version |
Displays the version number of the installed software package. |
The following table describes the fields on the Security Packages tab.
| Field | Description |
|---|---|
|
Version |
Displays the currently installed security package version. |
|
License |
Displays the number of licenses associated with the security package. Click the link to see the details of the licenses. |
|
Name |
Displays the name of the currently installed security package. |
Field Descriptions - Device Inventory Page > Configuration Template Tab
The following table describes the fields on the Configuration Template tab on the Device Inventory page.
| Field | Description |
|---|---|
|
Name |
Displays the name of the configuration template. |
|
Deployment Status |
Displays the deployment status of the configuration template, which can be No configuration, Ready to deploy, or Deployed. |
|
Last Deployed |
Displays the date when the configuration template was deployed. |
|
Description |
Displays the description of the configuration template. |
|
Validation |
Displays the status of the configuration templates validation job, which can be Success, Failed, or Inprogress. This field is temporarily populated when you click Validate on the Configuration Template page. |
Field Descriptions - Device Inventory Page > Device Configurations Tab
The Device Configurations page enables you to configure Junos OS settings for an SRX Series Firewall. The settings are classified into four categories, such as Basic Settings, Network Settings, Security Settings, and Advanced Settings. You can use CLI commands to configure the settings that are not displayed in the Device Configurations tab such as group, logical-system, tenant-systems configurations and operational commands.
-
The commonly configured settings and fields are categorized and displayed in the Basic, Security, and Network Settings tabs for all the devices. All other settings and fields are displayed in the Advanced Settings tab. When you upgrade Junos OS on your device to a newer version, any new settings and fields will be displayed in the Advanced Settings tab.
-
You can ignore the setting(s) or field(s) if they are not applicable for your device. Use Feature Explorer to determine if a feature is supported on your device.
The Device Configuration page also displays preconfigured settings for a device. You can configure new settings or edit and deploy the preconfigured settings.
The following table describes the icons, Call to Action (CTA) buttons, and different statuses displayed on the Device Configurations tab.
| Icon, CTA Buttons, or Status Displayed | Description |
|---|---|
| Left pane | Displays the settings type and features under each category. |
| Right pane | Displays the respective sections and fields. |
| Discard Changes | Click to discard all the undeployed configuration(s). |
| Preview | Click to preview the configuration(s) pending deployment on the device. |
| Deploy | Click to deploy the configuration(s). If there are out-of-band changes for a device, you are prompted to accept or reject the changes. |
Settings icon ( ) in the left pane |
Click to customize the order of features displayed. |
| Highlight configured fields check box | Select the check box to view only the configured fields. |
Search icon ( ) |
Enables you to search for any setting, feature, section, or field across basic, security, network, and advanced settings. |
| Quick Links | Click to view links to other sections in the pane. |
| Customize Page | Click to manage and reorder the sections displayed. By default, the recommended and frequently configured settings are displayed. |
| Deployment in progress | Displayed when the configuration(s) deployment is in-progress. |
| Deployment successful | Displayed when all the configuration(s) are deployed successfully on the device. |
| Deployment pending | Default status when device is onboarded. |
| Last deployed | Displays the number of hours or days since the last deployment and the email address of the user who deployed the configuration(s). |
| Redeploy required | Displayed when configuration(s) are pending deployment. |
The following table describes the various device configuration settings:
-
The commonly configured settings and fields are categorized and displayed in the Basic, Security, and Network Settings tabs for all the devices. All other settings and fields are displayed in the Advanced Settings tab. When you upgrade Junos OS on your device to a newer version, any new settings and fields will be displayed in the Advanced Settings tab.
-
You can ignore the setting(s) or field(s) if they are not applicable for your device. Use Feature Explorer to determine if a feature is supported on your device.
| Type | Setting | Description |
|---|---|---|
| Basic Settings | License | Use this section to configure license information. |
| Management | Use this section to configure SMTP, User Management,
Syslog, Security Log, SNMP, and System Services settings. For known issues, see Known Issues in Device Configuration Settings. |
|
| System | Use this section to configure DHCP local servers, NTP server, DNS server, and domain settings. | |
| Network Settings | BGP | Use this section to configure a BGP protocol. For more information, see the BGP User Guide. |
| Forwarding Options | Use this section to configure traffic forwarding
options. For more information, see the Broadband Subscriber Management Wholesale User
Guide. For known issues, see Known Issues in Device Configuration Settings. |
|
| Interfaces | Use this section to provide information about
interfaces, interfaces set, and interface range used on the device. For more
information, see the Interfaces User Guide for Security Devices. For known issues, see Known Issues in Device Configuration Settings. |
|
| OSPF | Use this section to configure OSPF interfaces. For more information, see the OSPF User Guide. | |
| Policy Options | Use this section to configure routing policies. For more information, see the Routing Policies, Firewall Filters, And Traffic Policers User Guide. | |
| RIP | Use this section to configure a RIP network. For more information, see the RIP User Guide. | |
| Routing Instances | Use this section to configure IPv4 and IPv6 routing protocols and settings. For more information, see the Routing Protocols Overview. | |
| Static Routes | Use this section to configure static routes to be installed in the routing table. For more information, see the Protocol-Independent Routing Properties User Guide. | |
| Security Settings Note: The tab does not
display any settings that you can configure from feature-specific pages. For
example, the anti-malware section doesn't enable you to create an anti-malware
profile.
|
Anti-Malware | Use this section to configure the Juniper ATP Cloud policy. |
| Firewall Authentication | Use this section to configure default firewall authentication settings used by firewall authentication policies that restrict and permit access of firewall users to protected resources behind a firewall. For more information, see the Identity Aware Firewall User Guide. | |
| Firewall Filtering | Use this section to configure firewall filters. For more information, see the Routing Policies, Firewall Filters, and Traffic Policers User Guide. | |
| Flow Based Anti-virus | Use this section to configure flow-based antivirus policy and machine learning scan. After configuring the antivirus policy, you must apply it to the network firewall policy. For more information, see the Junos CLI Reference. | |
| IDP Settings | Use this section to configure IDP to selectively enforce various IDP attack detection and prevention techniques on the network. For more information, see the Intrusion Detection and Prevention User Guide. | |
| Screens | Use this section to configure the security screen options. For every security zone, you can enable a set of predefined screen options that detect and block various kinds of traffic that the device determines as potentially harmful. For more information, see the Attack Detection and Prevention User Guide for Security Devices. | |
| Secintel (Custom DAG) | Use this section to configure SecIntel profiles and policies to work with SecIntel feeds, such as infected hosts and C&C. You then configure a firewall policy to include the SecIntel policy, for example, block outgoing requests to a C&C host. For more information, see the Junos CLI Reference. | |
| Security Zones | Use this section to define security zones to divide the network into different segments and apply different security options to each segment. For more information, see the Security Policies User Guide for Security Devices. | |
| User Firewall | Use this section to configure the integrated user
firewall feature, including access to the Active Directory domain and domain
controller, IP address-to-user mapping, and user-to-group mapping. The IP
address-to-user mapping and user-to-group mapping are configured per domain. For known issues, see Known Issues in Device Configuration Settings. |
|
| Utm | Use this section to configure the default Content Security policy. For more information, see the Junos CLI Reference. | |
| Advanced Settings Note: The settings
displayed in the Advanced Settings tab depends on the Junos OS Release version
running on the SRX Series Firewall.
|
Access | Use this section to configure essential user access and authentication features. Essential user access features include login classes, user accounts, access privilege levels, and user authentication methods. For more information, see the User Access and Authentication Administration Guide for Junos OS. |
| Access Profile | Use this section to enter the name for the access profile to be associated with the device. | |
| Accounting Options | Use this section to configure collection interval, file to contain accounting data, specific fields and counter names on which statistics must be collected. For more information, see the Network Management and Monitoring Guide. | |
| Applications | Use this section to configure application properties at the [applications] hierarchy level. For more information, see the Junos CLI Reference. | |
| Bridge Domains | Use this section to configure L2 bridging on your SRX Series Firewall. For more information, see the Layer 2 Bridging, Address Learning, and Forwarding User Guide. | |
| Chassis | Use this section to configure chassis and Multinode
High Availability (MNHA) cluster. For more information, see the Junos CLI Reference. For known issues, see Known Issues in Device Configuration Settings. |
|
| Class of Service | Use this section to configure CoS to define service levels that provide different delay, jitter, and packet loss characteristics to applications served by specific traffic flows. Applying CoS features to each device in your network ensures QoS for traffic throughout your entire network. For more information, see the Class of Service User Guide (Security Devices). | |
| Dynamic Profiles | Use this section to create dynamic profiles to use with DHCP or PPP client access. For more information, see the Broadband Subscriber Sessions User Guide. | |
| Event Options | Use this section to configure event policies and event scripts. For more information, see the Junos CLI Reference. | |
| Firewall | Use this section to configure firewall filters and policers. For more information, see the Routing Policies, Firewall Filters, and Traffic Policers User Guide. | |
| Forwarding Options | Use this section to configure traffic forwarding options. For more information, see the Broadband Subscriber Management Wholesale User Guide. | |
| JUNOS ES Root Configuration | Use this section to configure JSRC to interact with a SAE in an SRC environment to authorize and to provision subscribers. For more information, see the Broadband Subscriber Sessions User Guide. | |
| Multicast Snooping Options | Use this section to configure multicast snooping option values. For more information, see the Junos CLI Reference. | |
| Multi-Chassis | Use this section to configure consistency check parameters for a MC-LAG. | |
| PoE | Use this section to configure PoE interfaces, FPC configurations, and corresponding notifications. For more information, see the Interfaces User Guide for Security Devices. | |
| Protocols | Use this section to configure the protocols for a
routing instance. For known issues, see Known Issues in Device Configuration Settings. |
|
| Routing Options | Use this section to configure protocol-independent routing properties. For more information, see the Protocol-Independent Routing Properties User Guide | |
| Schedulers | Use this section to map a scheduler to a forwarding class using a scheduler map. | |
| Security | Use this section to configure Application Based
Routing (APBR), Application Layer Gateway (ALG), flow settings, forwarding options,
GPRS tunneling protocol, and so on. For known issues, see Known Issues in Device Configuration Settings. |
|
| Services | Use this section to configure the router or switch settings to connect to the local router or switch. For more information, see the Broadband Subscriber Services User Guide. | |
| Switch Options | Use this section to configure L2 learning and forwarding properties for a VLAN or a virtual switch. For more information, see the Ethernet Switching User Guide. | |
| VLANs | Use this section to configure the VLAN properties on the device. For more information, see the Ethernet Switching User Guide. | |
| VM Host | Use this section to configure VM host management properties. For more information, see the Junos OS Software Installation and Upgrade Guide. | |
| WLAN | Use this section to configure WLAN properties on the device. For more information, see the Interfaces User Guide for Security Devices. |
Known Issues in Device Configuration Settings
| Setting | Known Issue | Workaround |
|---|---|---|
| Basic Settings > Management > SNMP |
If you configure Remote Engine for SNMP, the configuration deployment fails because the Privacy configuration is deployed before the Authentication configuration. The following error message is displayed:
|
Configure the Remote Engine user settings in the following sequence:
|
| Network Settings > Interfaces | If you configure both the unit number and the VLAN ID as the outer tag for interfaces, the configuration deployment fails. The following error message is displayed: error: 'unit' statement cannot be
included along with 'vlan-tags-outer'
statement |
Do not configure both the options as the outer tag for interfaces. Select either Vlan_tag_mode or Unit as the outer tag. |
| Network Settings > Interfaces |
If you configure Pic Set for interfaces, the configuration deployment fails. The following error message is displayed: |
Configure Pic Set only for interfaces of the SRX5400, SRX5600, and SRX5800 SRX Firewalls. |
| Security Settings > User Firewall > Device Information |
The existing configuration of onboarded SRX Series Firewalls is not displayed on the User Firewall page because of a mismatch of the Authentication Source field name between the Juniper Security Director Cloud GUI and the device CLI. |
None |
| Advanced Settings > Security > GTP > Message IE Profile V2 |
If you don't configure all the mandatory settings for Message IE Profile V2, the configuration is not deployed on the devices even though the Juniper Security Director Cloud GUI displays a success message. |
Configure all the mandatory settings for Message IE Profile V2. See message-ie-profile-v2 for the mandatory settings. |
| Advanced Settings > Security > Grouped IE Profile |
If you don't configure all the mandatory settings while adding a Grouped IE Profile, the configuration is not deployed on the devices even though the Juniper Security Director Cloud GUI displays a success message. |
Configure all the mandatory settings for Grouped IE Profile. See grouped-ie-profile for the mandatory settings. |
| Advanced Settings > Protocols > IS-IS Instance |
If you don't configure all the mandatory settings while adding an IS-IS Instance, the configuration is not deployed on the devices even though the Juniper Security Director Cloud GUI displays a success message. |
Configure all the mandatory settings for IS-IS Instance. See level (IS-IS Interfaces) for the mandatory settings. |
| Network Settings > Forwarding Options > Load Balance > Indexed Load Balance | If you enable Indexed Load Balance while configuring Load Balance, the configurations are not deployed on the devices even though the Juniper Security Director Cloud GUI displays a success message. The following error message is displayed if you deploy the configuration using CLI: Could not retrieve the
two-level-multi-next-hop setting |
Don't enable Indexed Load Balance. The option is not applicable to SRX Series Firewalls. |
| Advanced Settings > Chassis > Network Services |
If you configure ethernet for Network Services, the configuration deployment fails because the option is not applicable to SRX Series Firewalls. |
Don’t configure ethernet for Network Services in SRX Series Firewalls. The option is not applicable to SRX Series Firewalls. |
| Advanced Settings > Chassis | If you configure Ambient Temperature, the configuration deployment fails because the option is applicable only to specific SRX Series Firewalls. The following error message is displayed: :[ErrorSeverity:error,ErrorPath:,ErrorMessage:Invalid
trailing data 'C' for numeric value:
'40C',BadElement:40C] |
Configure Ambient Temperature only on the supported SRX Series Firewalls. See Feature Explorer for the supported models. |
| Advanced Settings > Protocols > PPP |
If you configure PPP services for Protocols, the configuration deployment fails because the option is applicable only to specific SRX Series Firewalls. |
Configure PPP services for Protocols using CLI only on SRX4000 and SRX1600 Series Firewalls. See Point-to-Point protocol (PPP) for how to configure PPP using CLI. |
| Advanced Settings > Protocols > R2CP |
If you configure Port any for Client Port Value while configuring the R2CP protocols in the device CLI, the setting changes to Not configured on the Juniper Security Director Cloud GUI after deploying the device configuration. |
Configure a specific port for Client Port Value on the Juniper Security Director Cloud GUI. |
| Device Configurations |
If you configure an onboarded device, the configuration deployment shows as out-of-band changes. |
Wait 5 to 10 minutes for the device onboarding process to complete before updating and deploying the device configuration. |
| Device Configurations |
If you configure certain device settings, the configuration deployment fails because the settings might be applicable only to specific SRX Series Firewalls. For example,
|
Configure the settings applicable to the SRX Series Firewalls. See Feature Explorer for the supported models. |
| Device Configurations |
If you deactivate device settings in the SRX Series Firewalls using CLI, the device configuration deployment might fail when you configure settings on the Device Configurations tab of the Juniper Security Director Cloud GUI. |
Activate and commit the settings or delete the settings using CLI before configuring the settings using the Juniper Security Director Cloud GUI. |