1. Manuals
  2. Brands
  3. Juniper Manuals
  4. Software
  5. NETWORK AND SECURITY MANAGER - S REV 3
  6. Release note

Setting Up Nsm To Work With Infranet Controller And Infranet Enforcer - Juniper NETWORK AND SECURITY MANAGER - RELEASE NOTES REV 3 Release Note

Hide thumbs
Table of Contents

Advertisement

Network and Security Manager 2010.3 Release Notes

Setting Up NSM to Work with Infranet Controller and Infranet Enforcer

6
A ScreenOS firewall that is managed by NSM can also be configured as an Infranet
Enforcer in a UAC solution. To prevent conflicts between NSM and the Infranet Controller,
configure these firewall devices:
On the Infranet Controller, create the Infranet Enforcer instances:
1.
On the Infranet Controller, select UAC > Infranet Enforcer > Connection.
a.
Click New Enforcer.
b.
Enter the information requested in the display.
c.
Enter a password for the NACN password. You will use it again while setting up
d.
the Infranet Enforcer. If you are setting up a cluster instead of a single box, enter
all the serial numbers in the cluster, one per line.
Click Save Changes.
e.
Repeat Step 1b through Step 1e until all of your Infranet Enforcers have been entered.
f.
If you do not have one already, create a CA certificate for each Infranet Enforcer:
2.
Create a certificate signing request (CSR) for an Infranet Controller server certificate,
a.
and use the CA certificate to sign the server certificate.
Import the server certificate into the Infranet Controller.
b.
Import the CA certificate into the Infranet Enforcer.
c.
On each Infranet Enforcer, create the Infranet Controller instance:
3.
On the Infranet Enforcer, select Configuration > Infranet Auth > Controllers.
a.
Click New.
b.
Enter the parameters as prompted. The password in the second section must be
c.
the NACN password you entered in Step 1.d.
Click OK.
d.
Repeat Step 3b through Step 3d for all of the Infranet Enforcers.
e.
On the Infranet Controller, select UAC > Infranet Enforcer > Connection and
f.
check that all the Infranet Enforcers have been added.
On NSM, delete the Infranet Enforcer firewalls from the global domain:
4.
In the global domain, select Device Manager > Devices to list all the devices.
a.
Right-click each Infranet Enforcer firewall device and select Delete from the list.
b.
On NSM, delete the $infranet instances from the Object Manager:
5.
Select Object Manager > Authentication Servers.
a.
Copyright © 2010, Juniper Networks, Inc.

Advertisement

Table of Contents
loading

Related Manuals for Juniper NETWORK AND SECURITY MANAGER - RELEASE NOTES REV 3

Related Content for Juniper NETWORK AND SECURITY MANAGER - RELEASE NOTES REV 3

This manual is also suitable for:

Network and security manager

Table of Contents