vSRX

  • 1.  Juniper Policy Enforcer Used Case and Benefits

    Posted 09-24-2019 02:44

    Hello,

    I'm trying to understand when do we need to purchase the policy enforcer. As per my experience, if you want to control the security on firewalls to push policies and logs, you just get the security director and if you want to manage the routing of the firewalls and switches you get the network director.

    1- Do we need it to push policies to third party devices only?

    2- If we have the policy enforcer, do we need the security director or they have to be together

    3- What's the best case to purchase it?


    #PolicyEnforcer


  • 2.  RE: Juniper Policy Enforcer Used Case and Benefits
    Best Answer

    Posted 09-25-2019 03:06

    Policy Enforcer is primarily about two things.

     

    Using the Juniper SKY ATP feeds

    Enforcing 802.1x on both switches and SRX as a whole

     

    It does work in conjunction with Security Director in space

     

    https://www.juniper.net/documentation/en_US/junos-space18.1/policy-enforcer/topics/concept/policy-enforcer-deployment-model-overview.html

     

    https://www.juniper.net/documentation/en_US/release-independent/policy-enforcer/topics/reference/general/policy-enforcer-deployment-components.html