SRC-PE Getting Started Guide
CD Home
Report an Error
Collapse TOC
Entire manual as PDF [4283 KB]
-
About This Guide
[PDF 91 KB]
- Objectives
- Audience
- Documentation Conventions
- Related Juniper Networks Documentation
- Obtaining Documentation
- Documentation Feedback
- Requesting Support
- Chapter:
Product Overview
[PDF 83 KB]
- Product Description
- Product Features and Benefits
- Chapter:
SRC Components
[PDF 329 KB]
- Component Overview
- Server Components
- Service Activation Engine
- Policy and Service Management
- Accounting Support
- SAE Extensions
- Juniper Policy Server
- Network Information Collector
- Repository for Data
- Juniper Networks Database as a Data Repository on C-series Platforms
- Directory as Repository for SRC Data
- LDAP Version 3
- Prepackaged Integration
- Third-Party Directory Servers
- Configuration Tools
- SRC CLI
- Local Configuration Tools
- Policy Editor and Management
- SDX Admin
- SDX Configuration Editor
- SRC Management Tools
- C-Web Interface
- Prepaid Account Administration Application
- SDX SNMP Agent
- Traffic Mirroring Administration Application
- Service Management Applications
- SRC Soap Gateway
- Deep Packet Inspection Integration Application
- Benefits of the DPI Integration
- Enterprise Audit Plug-In
- Enterprise Manager Portal
- IDP Integration Applications
- IVE Host Checker Integration Application
- Prepaid Service Application
- Sample Enterprise Service Portal
- Sample IPTV Application
- Sample Residential Service Selection Portals
- Threat Mitigation Portal
- Traffic-Mirroring Application
- Workflow Application
- Java
- LDAP
- Scripts and External Programs
- E-Mail Send/Receive Protocols
- HTTP
- XML
- SRC Programming Interfaces
- CORBA Plug-In SPI
- CORBA Remote API
- NIC Access API
- SAE Core API
- Script Services
- Authentication and Accounting Applications
- AAA RADIUS Servers
- SRC Admission Control Plug-In
- Flat-File Accounting
- SRC Volume Tracking Application
- Managing Subscriber Accounts with Web Portals
- Accessory Components
- Monitoring Agent Application
- Redirect Server
- Auxiliary Applications
- Application Server
- IP FIlter
- Other Applications
- Chapter:
Planning a Deployment of C-series Platforms
[PDF 66 KB]
- Components in an SRC Deployment
- Considerations When Planning a Deployment of C-series Platforms
- Deployment Scenario
- Chapter:
Configuring a C-series Platform
[PDF 89 KB]
- Before You Begin Configuring the SRC Software on a C-series Platform
- Configuring the SRC Software
- Configuring SRC Components
- Chapter:
Accessing and Starting the SRC CLI
[PDF 92 KB]
- Overview of Configuration for the SRC CLI
- Changing the Directory Access Configuration for the CLI
- Configuration Statements for CLI Directory Access
- Changing Directory Access Properties
- Verifying the Configuration for Directory Access
- Starting the CLI
- Starting the CLI on a C-series Platform
- Starting the CLI on a Solaris Platform
- Accessing the Policies, Services, and Subscribers CLI
- Configuring Access to the Policies, Services, and Subscribers CLI
- Starting the Policies, Services, and Subscribers CLI
- Chapter:
Accessing and Starting the C-Web Interface
[PDF 87 KB]
- C-Web Overview
- Configuration Statements for the C-Web Interface
- Configuration Statements for Secure HTTP Access to the C-Web Interface
- Configuration Statements for HTTP Access to the C-Web Interface
- Configuration Statements for Logging for the C-Web Interface
- Accessing the C-Web Interface through Secure HTTP
- Accessing the C-Web Interface Through HTTP
- Starting the C-Web Interface
- Changing a Username or Password for the C-Web Interface
- Logging Out of the C-Web Interface
- Chapter:
Configuring Remote Access to a C-series Platform
[PDF 104 KB]
- Configuring External Interfaces on a C-series Platform
- Configuring Gigabit Ethernet Interfaces
- Configuring Tunnel Interfaces
- Configuring a Static Route to Devices on Other Networks
- Securing Connections Between a C-series Platform and Remote Hosts
- Configuring a C-series Platform to Accept SSH Connections
- Configuring a C-series Platform to Accept Telnet Connections
- Configuring a C-series Platform to Accept NETCONF Connections
- Chapter:
Overview of SRC Licenses
[PDF 41 KB]
- Types of Licenses
- Obtaining a License
- Pilot License
- Server License
- Chapter:
Installing Licenses for C-series Platforms
[PDF 78 KB]
- Installing a Pilot License from the SRC CLI
- Installing Server Licenses for C-series Platforms
- Configuring License Manager for an SAE on a C-series Platform
- Chapter:
Setting Up the License Server
[PDF 159 KB]
- Configuring Initial Settings for the License Server on Solaris Platforms
- Directory Fields for License Server
- Miscellaneous Fields for License Server
- Starting the License Server on Solaris Platforms
- Monitoring the License Server on Solaris Platforms
- Stopping the License Server on Solaris Platforms
- Chapter:
Installing Licenses for SRC Software on Solaris Platforms
[PDF 127 KB]
- Before You Install a License on a Solaris Platform
- Installing a Pilot License on a Solaris Platform
- Installing a Pilot License by Using the instlic Command
- Installing a Pilot License by Using SDX Admin
- Installing a Server License on a Solaris Platform
- Verifying a License
- Command Options for the instlic and licchk Commands
- Configuring the License Manager for an SAE on a Solaris Platform
- Directory Access Fields
- Client Fields
- Chapter:
Customizing and Managing the License Server
[PDF 122 KB]
- Overview of the License Server
- Server License
- License Server Errors
- License Requests
- Example: License Allocation
- Example: License Release Example
- Lease Renewal
- Directory Location and Access
- Unsuccessful Connections from the SAE to the License Server
- License Server Redundancy
- Managing Log Files
- Customizing License Server Configuration
- Alarm Fields
- ORB Configuration Property File Field
- License Server Repository Fields
- License Server Engine Fields
- Location of the License Server Fields
- Troubleshooting License Server Problems on Solaris Platforms
- Chapter:
Configuring System Time with the SRC CLI
[PDF 122 KB]
- Setting the Time Zone
- Setting the System Date
- Overview of NTP Support on a C-series Platform
- Configuration Statements for NTP
- Configuring NTP on a C-series Platform
- Configuring the NTP Boot Server
- Configuring NTP to Operate in Client Mode
- Configuring NTP to Operate in Symmetric Active Mode
- Configuring NTP to Operate in Broadcast Mode
- Configuring NTP Authentication
- Configuring NTP to Listen for Broadcast Messages
- Configuring NTP to Listen for Multicast Messages
- Verifying Configuration for NTP
- Chapter:
Configuring System Logging for a C-series Platform
[PDF 73 KB]
- Overview of the C-series Platform Log Server
- Message Groups
- Severity Levels
- Before You Configure System Logging
- Configuration Statements for System Logging on a C-series Platform
- Saving System Log Messages to a File
- Sending System Log Messages to Other Servers
- Sending Notifications for System Log Messages to Users
- Chapter:
Managing the Juniper Networks Database
[PDF 144 KB]
- Overview of the Juniper Networks Database
- Redundancy for a Juniper Networks Database
- Configuration Statements for the Juniper Networks Database
- Enabling the Juniper Networks Database to Run in Standalone Mode
- Enabling the Juniper Networks Database to Run in Community Mode
- Adding a Juniper Networks Database to an Established Community
- Updating Juniper Networks Database Configuration for an Established Community with One Primary Database
- Promoting a Secondary Database to a Primary Role
- Recovering Data in a Community with One Primary Database and One Secondary Database
- Changing the Mode of a Juniper Networks Database
- Loading Sample Data in to a Juniper Networks Database
- Verifying Configuration for a Juniper Networks Database
- Example: Configuration for a Database Community
- Requirements
- Software
- Hardware
- Overview and Sample Topology
- Configuration
- Configuring C1
- Configuring C2
- Configuring C3
- Chapter:
Setting Up an SAE with the SRC CLI
[PDF 87 KB]
- Overview of Initial SAE Configuration
- Creating Grouped Configurations for the SAE
- Configuring an SAE Group
- Configuring Local Properties for the SAE
- Configuring the RADIUS Local IP Address and NAS ID
- Starting and Stopping the SAE
- Chapter:
Managing System Software on a C-series Platform
[PDF 81 KB]
- Overview of Software Management on a C-series Platform
- Before You Upgrade the Software on a C-series Platform
- Creating a Snapshot of Files on a C-series Platform
- Upgrading the System Software on a C-series Platform
- Upgrading SRC Software for a Component
- Installing SRC Software for a Component
- Removing an Installed Component
- Restoring the Files in a Snapshot
- Chapter:
Using the Embedded Web Server for Testing on a C-series Platform
[PDF 41 KB]
- Overview of Java Web Server on C-series Platforms
- Deploying a Web Application in the Web Server
- Starting the Web Server
- Restarting the Web Server
- Stopping the Web Server
- Chapter:
Configuring User Access
[PDF 159 KB]
- Overview of User Accounts
- Login Classes for User Accounts
- Access Privilege Level
- Predefined Login Classes
- Access to Individual Commands and Configuration Statements
- Regular Expressions for Allow and Deny Statements
- Guidelines for Using Regular Expressions
- Timeout Value for Idle Login Sessions
- Configuring Login Classes
- Configuration Statements for Login Classes
- Configuring a Login Class
- Examples: Configuring Access Privileges for Operational Mode Commands
- Examples: Defining Access Privileges for Configuration Mode Commands
- Configuring User Accounts
- Configuration Statements for User Accounts
- Configuring a User Account
- Configuring Authentication for User Accounts
- Configuring a Plain Text Password
- Configuring SSH Authentication
- Changing the root Password
- Example: User Accounts
- Configuring a System Login Announcement
- Chapter:
Authenticating Users on a C-series Platform
[PDF 115 KB]
- Configuring RADIUS and TACACS+ Authentication
- Configuring RADIUS Authentication
- Configuring TACACS+ Authentication
- Configuring More Than One Authentication Method
- Configuring Authentication Order
- Configuring TACACS+ or RADIUS Authentication
- Configuring TACACS+ and RADIUS Authentication
- Removing an Authentication Method from the Authentication Order
- Configuring Template Accounts for RADIUS and TACACS+ Authentication
- Using Remote Template Accounts
- Using Named Template Accounts
- Configuring a Local User Template
- Example: Configuring System Authentication
- Chapter:
Managing Security Digital Certificates
[PDF 83 KB]
- Overview of Digital Certificates
- Before You Use Digital Certificates
- Commands to Manage Digital Certificates
- Manually Obtaining Digital Certificates
- Obtaining Digital Certificates through SCEP
- Removing a Certificate Request
- Removing a Certificate
- Chapter:
Connecting to Remote Hosts from the SRC Software
[PDF 35 KB]
- Connecting to a Remote Host Through SSH
- Connecting to a Remote Host Through Telnet
- Chapter:
Configuring and Starting the SNMP Agent with the SRC CLI
[PDF 193 KB]
- Configuration Statements for the SDX SNMP Agent
- Configuring the SDX SNMP Agent
- Configuring General Properties for the SDX SNMP Agent
- Configuring Initial Properties for the SDX SNMP Agent
- Configuring Directory Connection Properties for the SDX SNMP Agent
- Configuring Directory Monitoring Properties for the SDX SNMP Agent
- Configuring Logging Destinations for the SDX SNMP Agent
- Configuring JRE Properties
- Configuration Statements for the SNMP Agent
- Configuring the SNMP Agent
- Configuring System Information for the SNMP Agent
- Configuring Access Control for SNMPv3 Users
- Configuring Authentication
- Configuring Encryption
- Configuring Access Control for Communities
- Configuring Access Control for the VACM
- Associating Security Names with a Community
- Defining Named Views
- Defining Access Privileges for an SNMP Group
- Assigning Security Names to Groups
- Configuring Notification Targets
- Operating the SNMP Agent
- Starting the SDX SNMP Agent
- Stopping the SDX SNMP Agent
- Monitoring the SDX SNMP Agent
- Chapter:
Distributing Directory Changes to SRC Components
[PDF 39 KB]
- Overview of the Directory Eventing System
- Managing Directory Communication
- Chapter:
Configuring Local Properties with the SRC CLI
[PDF 100 KB]
- Local Properties for SRC Components
- Configuration Statements for Local Configuration
- Configuring Basic Local Properties
- Changing the Location of Data in the Directory
- Configuring Directory Connection Properties
- Configuring Initial Directory Eventing Properties for SRC Components
- Verifying the Local Configuration for a Component
- Chapter:
Planning an SRC Installation on a Solaris Platform
[PDF 109 KB]
- Installation Options and Configurations for Solaris Platforms
- Component Distribution Scenarios on Solaris Platforms
- Distributed Installation on Solaris Platforms
- Master Directory and Directory Shadows
- Scalability
- Reliability
- Simplified Management and Security
- Regionalized Installation
- Consolidated Installation on Solaris Platforms
- Redundancy Schemes
- RADIUS
- NIC Hosts
- COPS Connection
- Adding or Replacing Hardware
- Single-Host Installation for Demonstration
- Chapter:
Before You Install the SRC Software on a Solaris Platform
[PDF 100 KB]
- Requirements to Install the SRC Software
- Required User Privileges to Install the Software
- SRC Software Distribution
- System Requirements for Installing the SRC Software
- Verifying System Resources
- Network Requirements for the SRC Software
- SNMP Master Agent Requirements
- Data Repository
- RADIUS Choices
- X-Window Server Software Recommendations
- Installing Solaris Patches for the UNIX Host
- Next Steps
- Chapter:
Installing the SRC Software on a Solaris Platform
[PDF 247 KB]
- Information About Installing IP Filter, Python Libraries, and the SNMP Agent
- IP Filter
- Python Libraries
- SNMP Agent
- Overview of Steps to Install the SRC Software
- Logging the Installation Session
- Installation Feature Sets, Components, and Packages
- Installation Choices
- Installing the SRC Software on a Solaris Platform in Silent Mode
- Installing the SRC Software on a Solaris Platform in Graphical Mode
- Overview of Installing SRC Components as Solaris Packages
- Solaris IP Filter Software Installation Notes
- Installing SRC Components as Solaris Packages
- Transferring SRC Packages to Other Hosts
- Example: Transferring and Installing Packages
- Uninstalling the SRC Software on a Solaris Platform
- Next Steps
- Chapter:
Defining an Initial Configuration on a Solaris Platform
[PDF 112 KB]
- Configuring Initial Component Settings and Starting Components
- Saving Logging Information for an SRC Component
- Starting and Operating the SAE
- Starting the SAE for the First Time
- Starting the SAE After Initial Startup
- Monitoring the SAE
- Stopping the SAE
- Reviewing Port Settings for SRC Components
- Enabling Display of Help Topics for SRC Configuration Tools
- Next Steps
- Chapter:
Setting Up an SAE on a Solaris Platform
[PDF 145 KB]
- Configuring SAE Initial Settings
- Directory Fields
- RADIUS and Portal Address Fields
- JRE, SNMP, and Port Offset Fields
- Configuring SAE Attributes in Property Files
- Chapter:
Configuring and Starting the SDX SNMP Agent on a Solaris Platform
[PDF 311 KB]
- Configuring the SNMP Agent
- Configuring Directory Connection Parameters
- Configuring SNMP Agent Logging
- Severity Levels
- Configuring Communication with the Master Agent
- Configuring Other SDX SNMP Agent Parameters
- Operating the SNMP Agent
- Starting the SDX SNMP Agent
- Stopping the SDX SNMP Agent
- Monitoring the SDX SNMP Agent
- Cleaning SNMP Agent Logs and Process Files
- Commands for the Master Agent
- Reading the SNMP Agent MIBs
- Installing and Using the Net-SNMP Agent
- Installing the Net-SNMP Agent
- Configuring the Net-SNMP Agent
- Starting the Net-SNMP Agent
- Stopping the Net-SNMP Agent
- Monitoring the Net-SNMP Agent
- Locating the Log File
- Chapter:
Distributing Directory Changes to SRC Components on a Solaris Platform
[PDF 101 KB]
- Configuring JNDI Properties for the Directory Eventing System
- Extending the Directory Eventing System for SRC Components
- Example
- Identifying the Type of Directory
- Enabling Blacklisting for an Unresponsive Directory
- Blacklist Property
- Reestablishing a Connection to a Directory
- Chapter:
Installing Web Applications
[PDF 73 KB]
- Installing Web Applications
- Installing Web Applications Inside JBoss on a Solaris Platform
- Stopping JBoss
- Removing Web Applications
- Session Timeouts for Web Applications
- Access Controls
- Chapter:
Setting Up Your SRC Environment on a Solaris Platform
[PDF 45 KB]
- Chapter:
Upgrading the SRC Software on a Solaris Platform
[PDF 123 KB]
- Upgrading the SRC Software on Solaris Platforms
- Migrating Directory Data on Solaris Platforms
- Overview of the Migration Script
- Script Tasks Without Directory Server Upgrade
- Script Tasks With Directory Server Upgrade
- Overview of Steps to Migrate Directory Data
- Managing Shadowed Directories When Migrating Directory Data
- DirX Deployment
- Sun ONE Deployment
- Preparing the Migration Host
- Cloning the Directory Server
- Cloning the DirX Directory Server
- Cloning Sun ONE Directory Server (iPlanet)
- Installing the UMCmig Migration Package
- Customizing Migration
- Running the Migration Script
- Completing the Migration
- DirX
- Sun ONE (iPlanet)
- Updating the Original Host
- Chapter:
Using SRC Tools
[PDF 45 KB]
- Chapter:
Configuring Local Properties
[PDF 63 KB]
- Chapter:
Using SDX Admin
[PDF 251 KB]
- Overview
- Understanding the SDX Admin Layout
- LDAP Connection Fields
- SDX Admin Main Window
- Using the Menu Bar
- Options Menu: Configure
- Using the Toolbar
- Using the Navigation Pane
- Navigation Pane Icons
- Using the Content Pane
- General Procedures for Using SDX Admin
- Using Pop-Up Menus
- Modifying an Entry
- Undo and Redo
- Save and Revert
- Deleting an Entry
- Virtual Deletion
- Searching Text
- SDX Admin Limitations
- Unique User IDs Only
- Consistency
- Interdependence
- Internationalization
- Locale
- Localization of Data Storage
- Chapter:
Using SDX Configuration Editor
[PDF 175 KB]
- Setting Up SDX Configuration Editor
- Starting SDX Configuration Editor
- Setting the Editing Level
- Specifying the Directory Connection
- Creating a New Project
- Moving Between Versions of SDX Configuration Editor
- Using SDX Configuration Editor
- Importing Existing Configuration Objects
- Creating a New Configuration Object
- Exporting Configuration Objects
- GUI Elements
- Creating and Deleting Instances
- Chapter:
Abbreviations
[PDF 81 KB]
- Chapter:
References
[PDF 106 KB]
- RFCs
- Draft RFCs
- Other Software Standards
- URLs
-
Index