Table of Contents
Advertisement
Activating Subscription Services
Managing the Attack Object Database
Copyright © 2010, Juniper Networks, Inc.
Click on the Update button after specifying values for maximum number of user sessions
to be displayed and the user name search string, to update details about user sessions
in the Active Users View dialog box.
Click on Refresh to refresh the role of all active user sessions.
Click Delete after selecting the user session you want to delete and then click Yes in
the confirmation dialog box that appears to delete an active user session.
Click Delete All Sessions and then click Yes in the confirmation dialog box that appears
to delete all active user sessions on the device. Admin user sessions will not be deleted.
NOTE: The user session management feature for SA and IC devices is
available in the NSM UI on root clusters but not on cluster members. However
when the operation is performed NSM automatically chooses one of the
cluster members.
To use some Juniper Networks services, such as internal AV or Deep Inspection Signature
Service, you must activate the service on the device by first registering the device, and
then obtaining the subscription for the service. Even though devices with bundled AV
services come with a temporary, preinstalled subscription, you must register your product
and retrieve the subscription to receive your fully paid subscription.
To register your product, go to
product, you can retrieve the service subscription.
To obtain the subscription for a service:
From the Device Manager launchpad, select Other, and then select Get Entitlement
1.
from Entitlement Server. The Get Entitlement dialog box appears.
Select the devices or group of devices for which you want to retrieve a subscription.
2.
Click OK. The Job Information window displays the status of the subscription retrieval.
3.
The attack object database stored on the device contains predefined attack objects and
groups designed to detect known attack patterns and protocol anomalies within network
traffic. You use attack objects when using Deep Inspection (DI) or Intrusion Detection
and Prevention (IDP) as attack detection mechanisms in a security policy rule.
Keep your attack object database and IDP detector engine firmware current. You can do
this interactively from the UI, or you can schedule updates automatically. Juniper Networks
provides frequent attack database updates, available for download from the Juniper
Networks Web site. New attacks are discovered daily, so it is important to keep your
attack object database up-to-date. Verify that the attack database version on the
managed device matches the one on the NSM GUI server. The IDP engine is dynamically
. After you have registered your
www.juniper.net/support
Chapter 7: Managing Devices
289
Advertisement
Table of Contents
