Configuring If-Map Client Settings On The Infranet Controller; Procedure) - Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual

Configuring infranet controllers guide

Hide thumbs Also See for NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01:

Manual (444 pages)

Administration manual (1026 pages)

Installation manual (244 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

Table of Contents

NSM Infranet Controller Configuration Guide

Documentation

Configuring IF-MAP Client Settings on the Infranet Controller (NSM Procedure)

108

Enter a name and an optional description for this client.

From the Type list, select Client.

Type one or more IP addresses of the client. If the client is multihomed, for best results

list all of its physical network interfaces. If the client is an Infranet Controller or Secure

Access cluster, list the internal and external network interfaces of all nodes. It is

necessary to enter all of the IP addresses for all of the interfaces because equipment

failures may cause traffic between the IF-MAP client and the IF-MAP server to be

rerouted through a different network interface. Listing all of the IP addresses maximizes

the probability that IF-MAP Federation still works in the event of a failure.

Under Authentication Type, select the Client Authentication Method: Basic or

10.

Certificate.

If you select Basic, enter a username and password. The same information should

be added to the IF-MAP server.

If you select Certificate, choose which CA to use to verify the certificate for this

client. Optionally, specify certificate attributes or restrictions to require values for

certain client certificate attributes.

Click OK to save the IF-MAP client instance on the IF-MAP server.

11.

Configuring IF-MAP Client Settings on the Infranet Controller (NSM Procedure) on

page 108

Configuring IF-MAP Session Export Policy on the Infranet Controller (NSM Procedure)

on page 109

Configuring IF-MAP Session Import Policy on the Infranet Controller (NSM Procedure)

on page 112

Configuring IF-MAP Server Replicas (NSM Procedure) on page 114

You must identify the IF-MAP server to each Infranet Controller and SA appliance IF-MAP

client. To add the server, you specify the IF-MAP URL of the server and how to authenticate

to the server. Match the URL and security settings to equal those on the IF-MAP server(s)

to which the IF-MAP client will connect.

To configure IF-MAP client settings on the Infranet Controllers or SA appliances that will

be IF-MAP clients:

In the NSM navigation tree, select Device Manager > Devices.

Click the Device Tree tab, and then double-click the Infranet Controller for which you

want to configure IF-MAP client settings.

Click the Configuration tab. In the configuration tree, select System > IF–MAP

Federation > Overview.

From the IF-MAP Configuration list, select IF-MAP Client.

Table of Contents

Configuring If-Map Client Settings On The Infranet Controller; Procedure) - Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual

Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01

Related Content for Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01

Table of Contents