About the Devices Page

To access this page, click SRX > Device Management > Devices.

The Devices page displays a list of devices managed by Juniper Security Director Cloud. You can view information about the device, such as the software release version, the platform, and various status indicators. You can also view the device inventory details, rollback to a configuration version, resynchronize or reboot a device, and upgrade a device.

To manage devices using Juniper Security Director Cloud, you must first add the devices to Juniper Security Director Cloud. After you add your devices, you can manage the devices using the Devices page.

Tasks You Can Perform

You can perform the following tasks from this page:

Add devices to Juniper Security Director Cloud. See Add Devices to Juniper Security Director Cloud.
Subscribe your devices to multiple subscriptions. See Manage Device Subscriptions.
Delete a device from Juniper Security Director Cloud. See Delete Devices From Juniper Security Director Cloud.
View the details of a device. Select a device, and click More > Detail. The details of the device is displayed in a panel on the right side of the page. See Table 2.
View the device inventory information. Select a device, and click More > View Inventory. The device inventory page opens displaying the device discovery. See Table 3.
Add a physical interface on the device. See Configure a Physical Interface on the Device
Configure a security zone for the device. See Configure a Security Zone For the Device
Configure a routing instance for the device. See Configure a Routing Instance for Devices
Configure a static route for the device. See Configure a Static Route for Devices
Add feature licenses for a device. See Add a License to a Device
Import local certificates and CA certificates into your devices. See Import a Device Certificate
Resynchronize a device with Juniper Security Director Cloud. See Resynchronize a Device with Juniper Security Director Cloud
View the active configuration of a device. Select a device, and click More > View Active Configuration. The Active Configuration page opens displaying the active configuration of the device.
View configuration versions of a device. See Manage Configuration Versions.
Reboot a device. See Reboot a Device.
Upgrade a device. See Upgrade a Device.
Export device information as a CSV file that can be opened and edited using an application such as Microsoft Excel. Click More > Export as CSV.
Export the device inventory information as a zipped file. Click More > Export Inventory.
Enable security logging for a device or device cluster. See Security Logs Configuration.
Show or hide columns about a device. Click the Show/Hide columns icon in the top-right corner of the page and select the columns to view on the page.
Filter information based on select criteria. You can add filters, save the filters, and set any of the filters as default. To add a filter:
1. Click the filter icon on the top-right corner of the page, and select Add Filter to open the Add Criteria page.
2. Set the filter conditions, and click Add.
The filter is saved and the filter is applied on the data. You can save the filter. You can also mark one filter as the default filter.

To remove the filter, click the filter icon, and select Hide Filter.

Field Descriptions

Table 1 describes the fields on the Devices page.

Table 1: Fields on the Devices Page
Fields	Description
Host Name	Displays the name of the device.
Management Status	Displays the following connection statuses of devices in Juniper Security Director Cloud: Up—The device is connected to Juniper Security Director Cloud. Down—The device is not connected to Juniper Security Director Cloud. Discovery Not Initiated—The device is added to the device list on the Devices page, but is not added completely. To complete adding the device, click Adopt Device, and follow the instructions in Add Devices or Device Clusters Using Commands. Discovery Failed—There was an error during the device discovery process or while adding the device to Juniper Security Director Cloud. You can view the reason for the failure when you hover your mouse cursor over the Discovery Failed status.
Configuration Status	Displays the current state of the device configuration: Unknown—The device status is unknown to Juniper Security Director Cloud. The device is either not connected to Juniper Security Director Cloud or is down. In Sync—The device is connected to Juniper Security Director Cloud. Out of Sync—The device is not connected to Juniper Security Director Cloud. Sync in Progress—The device is being synchronized to Juniper Security Director Cloud after the device is added or upgraded.
Device Health Status	Displays the resources used by the device, such as CPU processing power, memory, and storage. The health status is displayed only for devices with subscriptions. The status of the device is color-coded. Green indicates a healthy device with resource usage below 50%. Orange indicates warnings with resource usage reaching 50% to 80%. Red indicates errors and heavy resource usage above 80%.
Subscriptions	Displays the subscriptions to which the device is subscribed. Displays Trial Subscription if you have subscribed the device to the trial subscription. Displays No Subscription if you have not yet subscribed the device to any subscriptions.
OS Version	Displays the operating system firmware version running on the device This field displays Unknown for devices that are not managed using Juniper Security Director Cloud.
Platform	Displays the model number of the device. For devices that are not managed using Juniper Security Director Cloud, the platform details are discovered through SNMP. If the platform details cannot be discovered, the field displays Unknown.

Table 2 describes the fields on the Device Details pane.

Table 2: Fields on the Device Details Pane
Fields	Description
Basic Information
Host Name	Displays the name of the device.
OS Version	Displays the operating system firmware version running on the device. This field displays Unknown for devices that are not managed using Juniper Security Director Cloud.
Family	Displays the device family of the selected device. For devices that are not managed using Juniper Security Director Cloud, the family is the same as the provided vendor name. The field displays Unknown if the vendor name is not available and if SNMP is not used or has failed.
Platform	Displays the model number of the device. For devices that are not managed using Juniper Security Director Cloud, the platform details are discovered through SNMP. If the platform details cannot be discovered, the field displays Unknown.
Serial Number	The serial number of the device chassis. This field displays Unknown for devices that are not managed using Juniper Security Director Cloud.
Status Information
Management Status	Displays the connection status of the device in Juniper Security Director Cloud. Up—The device is connected to Juniper Security Director Cloud. Down—The device is not connected to Juniper Security Director Cloud. Discovery Failed—There was an error during device discovery or adding to Juniper Security Director Cloud. You can see the reason for the failure when you hover your mouse cursor over the Discovery Failed status.
Configuration Status	Displays the current state of the device configuration. Unknown—The device status is unknown to Juniper Security Director Cloud. The device is either not connected to Juniper Security Director Cloud or is down. In Sync—The device is connected to Juniper Security Director Cloud. Out of Sync—The device is not connected to Juniper Security Director Cloud. Sync in Progress—The device is being resynchronized to Juniper Security Director Cloud after the device is added or upgraded.

Table 3 describes the fields on the Device Inventory page.

Table 3: Fields on the Device Inventory Page
Fields	Description
Overview
Chassis	Displays the port usage and health status of the hardware devices.
System Information	Displays the following details of the devices: Model name Host name Serial number—This field displays Unknown for devices that are not managed using Juniper Security Director Cloud. Software version—This field displays Unknown for devices that are not managed using Juniper Security Director Cloud. System time System up time Active users
Subscriptions	Displays the subscriptions attached to the device and the status of the subscriptions.
Rules	Displays the number of rules configured for the device along with the number of used and unused rules.
Memory	Displays the storage resources used by the device.
Security Packages	Displays the name of the installed security packages.
CPU	Displays the CPU processing power used by the device.
Licenses	Displays the number of times an item has been licensed.
Chassis
Model	Displays the model of the selected module.
Serial number	Displays the serial number of the selected module.
Module	Displays the module of the device.
Type	Displays the type of the device.
Model	Displays the model of the device.
Version	Displays the version of the device software.
Part Number	Displays the part number of the device.
Serial Number	Displays the serial number of the device.
Physical Interfaces	Displays standard information about physical interfaces connected to the device in the type-/fpc/pic/port format where type is the media type that identifies the network device. For example, ge-0/0/6. Click View to go to the Interfaces tab.
Description	Displays an optional description for this interface configured on the device. The description can be a text string that contains up to 512 characters. Longer strings are truncated to 512 characters. If there is no information, the column is empty.
Network - Basic Settings
Basic Settings
Hostname	The host name of the device.
Domain name	The name of the domain where the device is located.
DNS servers	The DNS servers used to process the domain of the device. Click + to add DNS servers.
System Time Setting
Time zone	The local time zone where the device is located.
NTP servers	The NTP servers used to get the time where the device is located. Click + add NTP servers.
System Services
Telnet	The option to allow Telnet access to the device.
FTP	The option to allow two-way FTP file to the device.
SSH	The option to allow SSH access to the device.
HTTP	The option to enable and configure unencrypted HTTP connections.
HTTP Port	The TCP port for incoming HTTP connections.
Interface	The interfaces that accept HTTP access.
HTTPS	The option to enable and configure encrypted HTTPS connections.
HTTPS Port	The TCP port for incoming HTTPS connections.
Interface	The interfaces that accept HTTPS access.
HTTPS Certificate	The certificate to secure the connection from the HTTPS certificates list. Local Certificate—The name of the local certificate. PKI Certificate—The name of the certificate that is generated by the public key infrastructure system. System Generated—The automatically generated self-signed certificate for enabling HTTPS services.
SNMP
Contact information	The contact person for the system, such as the name and phone number of the administrator.
System location	The physical location of the device.
System description	The description entered for the system.
Local engine ID	The unique identifier of an SNMPv3 engine for system identification. The local engine ID contains a prefix and a suffix. The prefix is formatted according to the specifications defined in RFC 3411. The suffix is defined by the local engine ID. Usually, the local engine ID suffix is the MAC address of the Ethernet management port 0.
Community	The SNMP community that authorizes SNMP clients based on the source IP address of incoming SNMP request packets. The community also defines which MIB objects are available and the operations, such as read-only or read-write, allowed on those objects.
Trap groups	A named group of hosts to receive the specified trap notifications. The name of the trap group is embedded in SNMP trap notification packets as one variable binding (varbind) known as the community name. You must configure minimum one trap group for SNMP traps to be sent.
Health monitoring	The option to enable SNMP-based health monitoring of the device.
Interval	The frequency interval to sample the key health indicators with the rising and falling thresholds. The value range is from 1 to 2147483647 seconds, and the default value is 300 seconds.
Rising Threshold	The value for SNMP to generate an event trap and a system log message when the value of a sampled indicator is increasing. The value range is from 1 to 100 seconds, and the default value is 90 seconds.
Falling threshold	The value for SNMP to generate an event trap and a system log message when the value of a sampled indicator is decreasing. The value range is from 0 to 100 second, and the default value is 80 seconds.
Network - Interfaces
Interface	Displays the interface that the device uses to connect to Juniper Security Director Cloud.
Config State	Displays the status of the interface.
IPv4 Address	Displays the IPv4 address assigned to the logical interface. If you do not add a logical interface to a physical interface, this column will be blank.
IPv6 Address	Displays the IPv6 address assigned to the logical interface. The IPv6 address is displayed only if the device has an IPv6 address. If you do not add a logical interface to a physical interface, this column will be blank.
IfIndex	Displays the unique identifying number associated with a physical or logical interface.
Admin Status	Displays the administrative status of the physical interface, which can be Up or Down.
Link Status	Displays the link status of the interface, which can be Up or Down.
VLAN ID	Displays the VLAN ID assigned to the logical interface. If you do not add a logical interface to a physical interface, this column will be blank.
Zone	Displays the security zone where the interface is configured.
MTU	Displays the maximum transmission unit (MTU) size on the physical interface.
Speed	Displays the speed (mbps) at which the interface is running.
Link Type	Displays the link level type of the physical interface.
Description	Displays the description entered for the physical interface.
Network - Zones
Name	Displays the source zone of the device.
Interfaces	Displays the link to the table of logical interfaces of the device.
Config State	Displays the status of the device.
Description	Displays the configuration version of the device.
Routing
Routing - Static Routes
IP Address	Displays the IPv4 or IPv6 address depending on the type of IP address specified.
Next Hop	Displays the next hop IP address.
Qualified Next Hop	Displays the qualified next hops that allow you to associate one or more properties with a particular next-hop address.
Next Table	Displays the name of the next routing table to the destination.
Routing - Routing Instance
Name	Displays the name of the routing instance. Each routing instance has a unique name and a corresponding IP unicast table.
Routing Protocols	View or configure static routes for the routing instance by clicking the link in the Routing Protocols column.
Instance Type	Displays the type of routing instance. Juniper Security Director Cloud supports Virtual router as the default routing instance.
Assigned Interface	Displays the interface associated with the routing instance.
Description	Displays the description for the routing instance.
Status	Displays the deployment status of the routing instance.
Device Administration
Device Administration - Licenses
Name	Displays the name of the license associated with the device.
Status	Displays the status of the license, which can be: Active: When the license validity is les than 30 days, the status also indicates the number of days left till expiry. Expired Only valid licenses are included in the license count calculation.
Expiry Date	Displays the expiry date of the licensed feature.
Total Licenses	Displays the total licenses available for the feature.
Used Licenses	Displays the total licenses used for the feature.
Required Licenses	Displays the total licenses required for the feature.
Install License	The option to add licenses to the device. See Add a License to a Device.
Device Administration - Certificates
Certificate ID	Displays the unique identification of the certificate.
Issuer Organization	Displays the details of the organization that issued the certificate.
Status	Displays the expiration status of the certificate: If you set the certificate to be renewed automatically, the status displayed depends on the renewal period selected from the Edit Certificate Settings page. For example, if you select the renewal period as 1 month, the Status field displays Less than 1 month before expiry If you set the certificate to be manually renewed, the status displayed depends on the expiration notification time for the certificate. For example, Less than 2 weeks before expiry If the expiration date of the certificate does not meet the expiration notification time yet, the Status field displays – If the certificate has expired, the Status field displays Expired
Expiry Date	Displays the date and time when the certificate expires.
Encryption Type	Displays the type of the certificate: Root certificate Trusted certificate
Import	The option to import certificates into the device. See Import a Device Certificate.
Generate Default Trusted CAs	The option to generate default trusted CA profiles. See Import a Device Certificate.
Device Administration - Software
Software Name	Displays the name of the installed software package.
State Type	Displays the type of the software package.
Software Description	Displays the description of the software package.
Version	Displays the version number of the installed software package.
Device Administration - Security Packages
Name	Displays the name of the currently installed security package.
Version	Displays the currently installed security package version.
License	Displays the number of licenses associated with the security package. Click the link to see the details of the licenses.
Configuration Template
Name	Displays the name of the configuration template.
Deployment Status	Displays the deployment status of the configuration template, which can be No configuration, Ready to deploy, or Deployed.
Last Deployed	Displays the date when the configuration template was deployed.
Description	Displays the description of the configuration template.
Validation	Displays the status of the configuration templates validation job, which can be Success, Failed, or Inprogress. This field is temporarily populated when you click Validate on the Configuration Template page.

ON THIS PAGE

About the Devices Page

Tasks You Can Perform

Field Descriptions

Related Documentation