Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1 Administration Manual page 133

Table 16: Predefined NSM Administrator Activities (continued)
Function
Network Honeypot Rulebase
NSRP Monitor
Permitted Objects
Phase1/Phase2 Proposal
Policy Custom Field Data
Objects
Policy Custom Field Metadata
Objects
Policy Lookup Table
Polymorphic Address Objects
Polymorphic Service Objects
Copyright © 2010, Juniper Networks, Inc.
Task Description
Create Allows an administrator to configure network honeypot rules that mimic
seemingly vulnerable counterfeit ports to entrap would be attackers.
Edit
View
View NSRP Monitor tracks NSRP statistics. To enable NSM to track these
statistics, you must enable "NSRP Monitor" in the NSRP properties for
each cluster device.
Create Allows an administrator to manage permitted objects. You configure
permitted objects in Profiler consisting of source ID, destination, and
Delete
service. These objects define what you should see on the network, rather
than using attack objects which define what you do not want to see.
Edit
View
Create Allows an administrator to manage custom IKE phase 1 and phase 2
proposals,
Delete
Edit
View
Create Allows an administrator to manage custom objects added to a Policy
table.
Delete
Edit
View
Create Allows an administrator to manage metadata used in defining custom
Policy objects.
Delete
Edit
View
Modify
Create Allows an administrator to create polymorphic address objects.
Polymorphic objects can be used as place holders for values that will be
defined in a different context (in a regional server domain or subdomain,
for instance).
Create Allows an administrator to create polymorphic service objects.
Polymorphic objects can be used as place holders for values that will be
defined in a different context (in a regional server domain or subdomain,
for instance).
Chapter 3: Configuring Role-Based Administration
83