Table of Contents
Advertisement
User Groups
OR
AND
NOT
Group Expressions
OR
AND
NOT
Copyright © 2010, Juniper Networks, Inc.
Table 40: Group Expression Operators (continued)
User Objects
If the security policy defines authentication for user group " a" or user group " b"
, the security device authenticates the user if it belongs to either " a" or " b" user
group.
If the security policy defines authentication for user group " a" AND user group "b"
, the security device authenticates the user only if it belongs to both user groups.
If the security policy defines authentication for any user group that is not group
"c" (NOT "c" ), the security device authenticates all users except those that belong
to the "c" user group.
If the security policy defines authentication for user objects that match the
description of group expression "a" OR group expression "b" , the security device
authenticates the user if either group expression references that user.
If the security policy defines authentication for user objects that match the
description of group expression "a" AND group expression "b," the security device
authenticates the user only if both group expressions reference that user.
If the security policy defines authentication for user objects that do not match
the description of group expression "c" (NOT "c" ), the security device
authenticates all users except those that match the group expression.
Because a group expression references external user objects and external user groups,
you must first create those user object and groups before you can use them in a group
expression. You cannot reference local user object or local user object groups in a group
expression.
To add a group expression:
In the navigation tree, double-click Object Manager and select Group Expressions.
1.
In the main display area, click the Add icon and select New. The New Group Expression
2.
dialog box appears.
Enter a name, color, and comment for the group expression.
3.
Select the operator you want to use in the expression (OR, AND, NOT) and then
4.
configure the operands:
Chapter 8: Configuring Objects
411
Advertisement
Table of Contents
Subscribe to Our Youtube Channel
Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - CONFIGURING INTRUSION DETECTION AND PREVENTION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - API GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - M-SERIES AND MX-SERIES DEVICES GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.2 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.3 - ADMINISTRATION GUIDE REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING J SERIES SERVICES ROUTERS AND SRX SERIES SERVICES GATEWAYS GUIDE REV
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - NSMXPRESS SERIES II REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - REV1
- Juniper NETWORK AND SECURITY MANAGER 2010.4 - M-SERIES AND MX-SERIES DEVICES GUIDE REV 1
- Juniper NETWORK AND SECURITY MANAGER 2010.3
- Juniper NETWORK AND SECURITY MANAGER 2010.2
- Juniper MEDIA FLOW CONTROLLER 2.0.4 -
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - AQL EVENT AND FLOW QUERY CLI GUIDE
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - EVENT CATEGORY CORRELATION REV 1
- Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - SNMP AGENT GUIDE REV 1
- Juniper STRM LOG MANAGEMENT 2008.2 - S 6-2008
Need help?
Do you have a question about the NETWORK AND SECURITY MANAGER 2010.4 - ADMININISTRATION GUIDE REV1 and is the answer not in the manual?
Questions and answers