- Introduction
- Before You Begin
- play_arrow 2024
- play_arrow 2023
- play_arrow 2022
- Known Behaviors and Issues
March 26, 2025 Release
Juniper Security Director Cloud New Features: March 26, 2025
Monitor
Data export from event viewer pages—You can now export traffic logs or event logs from the respective Monitor > Logs pages. Click Export Logs to download the logs in CSV format compressed in a ZIP folder.
[See About the Session Page, Monitor CASB Logs, and About the All Security Events Page. ]
Review and identify reverse shell attacks—You can now view information about reverse shell attacks detected in your network. You can review the information and add non-malicious IP addresses to an allowlist.
[See Reverse Shell Overview.]
SRX
Support for cloud-ready SRX Series firewalls (SRX4700)—You can now add cloud-ready SRX4700 firewalls to Juniper Security Director Cloud and centrally manage them by using the Juniper Security Director Cloud portal.
[See Add Devices to Juniper Security Director Cloud, and Juniper Security Director Cloud Supported Firewalls.]
Automatic ATP enrollment of CPE devices—Use Juniper Security Director Cloud to streamline the ATP enrollment of customer premises equipment (CPE) devices onboarded using Juniper Security Director Cloud. With this feature, you no longer need to use CLI commands to manually enroll CPE devices. You can configure automatic ATP enrollment of new devices on the ATP Mapping page. Use the Devices page to easily configure automatic enrollment of existing devices. If you enroll devices through Juniper Security Director Cloud, you cannot manage them with CLI commands. And if you've enrolled devices manually, you cannot manage them through Juniper Security Director Cloud.
[See Enroll SRX Series Firewalls to Juniper Security Director Cloud, Disenroll SRX Series Firewall from ATP Cloud, and Map an Existing ATP Realm to Juniper Security Director Cloud.]
Security Subscriptions
View IPS signature details on the Threat Labs page—You can now click the IPS signature name link on the SRX > Security Subscriptions > IPS > IPS Signature page to access the IPS signature details on the Threat Labs page to which you're redirected. However, this link is not available for custom signatures and static or dynamic groups.
[See IPS Signatures Overview and Create an IPS Signature. ]
Administration
Two-factor authentication—You can now enhance the security of your user account by configuring two-factor authentication. To use this feature, you must first enable two-factor authentication for an organization. When you enable two-factor authentication for one organization, you automatically enable it for all associated organizations.
[See Enable Two-Factor Authentication.]
Buffer for log streams data budget—You now receive a grace buffer of 1 TB of data after you exhaust the allocated data budget for log streams. This grace buffer automatically activates when you exceed your allocated data limit.
Streaming logs from Juniper Security Director Cloud is a licensed feature.
[See Add a Log Stream.]
Application token management—You can create and manage application tokens to enable Juniper Security Director Cloud or OpenAPI users to securely access Juniper ATP Cloud APIs over HTTPS. You can activate or deactivate tokens and block or unblock access to tokens for specific IP addresses.
[See Application Tokens Overview.]
Access Juniper Security Director Cloud API Reference—You can now access the Juniper Security Director Cloud API Reference from the Juniper Security Director Cloud Products page.
Security Director Insights
Security Director Insights Cloud has been deprecated since December 2024. As a result, the following pages are no longer available in the Juniper Security Director Cloud GUI:
Juniper Security Director Cloud Bug Fixes: March 26, 2025
Enhanced device deletion process—Deleting devices and then attempting to onboard them again resulted in key constraint violation errors from the database. This issue has now been resolved.
Device management status displayed Down—The issue with the SRX Series Firewall where the out-of-band connection stayed active even when the device status was marked as Down has been resolved. The firewall’s connection status now accurately reflects the device status.
Improved confirmation commit handling for SRX Series Firewalls—The configuration deployment from Juniper Security Director Cloud to the SRX Series Firewall cluster previously experienced rollbacks due to the confirmed commit RPC not being sent within one minute of the deployment. This issue has now been resolved by changing the default confirmed commit timeout value to 60 seconds.
Access Profile user name limit—Juniper Security Director Cloud previously had a limitation that restricted Access profiles to a maximum of eight user names. This issue has now been resolved, allowing for more user names to be included in Access profiles.
Blank UI pages in Juniper Security Director Cloud—The Addresses, Services, and Objects pages displayed blank when users navigated to these pages from the Sessions page, This issue is now resolved.
New global policies not displayed—New global policies were not displayed in Juniper Security Director Cloud under the Global section of the security policies page. This issue is now resolved.
Address names and IP addresses not displayed—Hovering over variable addresses in group policies did not display the names of specific addresses. This issue is now resolved, and users can see the IP address for host types or access hyperlinks for address groups.
DNS addresses in NAT policy—NAT policies did not support DNS addresses. This issue is now resolved.
Additional CLI commands generated—After the auto-import of SRX Series Firewall configurations, extraneous CLI commands were generated during deployment, leading to deployment failures. This issue is now resolved.
Firewall events in Dashboard—The Firewall: Top Events widget in the Dashboard displayed only firewall Deny events. The issue is now resolved and the widget now displays all firewall events.
Automatic deletion of session logs—The previous strategy to automatically delete session logs relied on removing logs based on their categories, such as AppTrack and Junos, which resulted in an unpredictable deletion process. This issue is now resolved. Logs are now automatically deleted based on their timestamps, ensuring that older logs are deleted first, regardless of their category.
Management status of devices not displayed correctly—The Devices page displayed incorrect management status for devices as the device status in Juniper Security Director Cloud was not being updated according to the actual device status. This issue is now resolved.
Flow-based antivirus events in Dashboard—The flow-based antivirus events were not displayed in the Threat Map:Virus and Virus:Top Blocked widgets in the Dashboard. This issue is now resolved.
Partial configuration updates sent to devices—Juniper Security Director Cloud previously sent only partial configuration updates to devices whenever users made changes in the Policy Options section of the Junos Detailed Configurations Tab on the Device Inventory page. This issue is now resolved.
SRX2300 upgrade failed—The software upgrade for the SRX2300 through Juniper Security Director Cloud encountered an issue and failed. This issue is now resolved.
NAT pools import failed—The import of NAT pools during the NAT policy import process previously failed due to a restriction that allowed a maximum of 1000 NAT pools. This limitation is now resolved.
Configuration preview and deployment delay—The preview of configuration changes before deployment previously took a long time to display and deploy to devices. This issue is now resolved.
Deployment of imported security policies failed—The deployment of security policy updates, which involved importing new policies and removing old ones, failed. This issue is now resolved.
Option to remove security profiles in global options of security policies—There was no option to remove security profiles from the global options. This issue is now resolved by introducing an empty option in the dropdown list.
Security policy rematch configuration deleted—The security policy rematch configuration was deleted when you add firewall devices to Juniper Security Director Cloud. This issue is now resolved.
NextGen web filter configuration not allowed—The NextGen web filter configuration in Juniper Security Director Cloud required first deleting the local configuration on the firewall device. This issue is now resolved.
IPS policy import failure—The IPS policy import failed due to custom IPS dynamic groups within IDP policies. This issue is now resolved.
Secure Edge New Features: March 26, 2025
Security Subscriptions
Configure CASB inline cloud applications—You can set rules for managing activities on newly added cloud applications, such as MetaMessenger and Office365. For MetaMessenger, manage activities such as Login, Chat, Audio/Video, and FileTransfer. For Office365, manage activities such as Open, AutoSave, Download, and Share in the Word, Excel, and PowerPoint applications.
[See Add Rules to a CASB Profile and Create an Application Instance.]
