Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Announcement: Try the Ask AI chatbot for answers to your technical questions about Juniper products and solutions.

close
header-navigation

Solutions

Featured solutions AI Campus and branch Data center WAN Security Service provider Cloud operator Industries
Campus and Branch

Welcome to the NOW Way to Wi-Fi

Take your networking performance to new heights with a modern, cloud-native, AI-Native architecture. Only Juniper can help you unleash the full potential of Wi-Fi 7 with our AI-Native platform for innovation.
Prepare for liftoff
Business intelligence analyst dashboard on virtual screen. Big data Graphs Charts.

AI Data Center Networking

Juniper’s AI data center solution is a quick way to deploy high performing AI training and inference networks that are the most flexible to design and easiest to manage with limited IT resources.
Find out more
Enterprise AI-Native Networking

Enterprise AI‑Native Routing

Juniper's Ai-Native routing solution delivers robust 400GbE and 800GbE capabilities for unmatched performance, reliability, and sustainability at scale.
Explore enterprise routing
Zero trust security

Ops4AI Lab

Visit our lab in Sunnyvale, CA and see our AI data center solution for yourself. You can try out your own model’s functionality and performance, too.
Visit the lab
Enterprise AI-Native Networking

Enterprise AI‑Native Routing

Juniper's Ai-Native routing solution delivers robust 400GbE and 800GbE capabilities for unmatched performance, reliability, and sustainability at scale.
Explore enterprise routing
Higher Education

Shaping Student Experiences: The NOW Way to Build Higher Education Networks

Juniper Networks CIO Sharon Mandell and a virtual summit of C-level IT leaders from prestigious institutions discuss ongoing efforts to support digital transformation on campus.
Watch now
Hand on tablet with healthcare overlay of graphics

Security in healthcare

In this IDC Spotlight report, discover how AI networking can automate and strengthen a healthcare ecosystem to defeat criminals and prevent loss. 
Gain insights into ecosystem security
Retail

The Future of In-Store Technologies

Retail experts Kevin McCartan, Senior IT Service Delivery Engineer at Musgrave; Jack Stratten of Insider Trends; and Christian Gilby, Senior Director of Product Marketing at Juniper Networks, discuss customer experiences.
See the future

Products

Wireless access Wired access SD-WAN / SASE Routing and switching Security Mist AI™ Management software Network operating system Blueprint for AI-Native Acceleration Optics
  • Operations
ACX7020 router

Juniper ACX7020 Cloud Metro Access Router

Legacy networks simply cannot meet the demands of today’s rapidly evolving metro landscape. Unlock a new generation of highly scalable architectures and automated operations with the Juniper ACX7020. 
Learn more
EX4000 Ethernet Switch

Next-gen AI-Native EX4000 line of switches

Lack of AI innovation from your current networking vendor slowing you down? Embrace Juniper’s cloud-native, AI-Native access switches that support every level and layer, across nearly every deployment.
Discover how
The Q and AI text with an image of Bob Friday and Kedar Dhuru.

The Q&AI Podcast

Delivering practical solutions and enriching discussions, this podcast series is a vital resource for those seeking an in-depth exploration of AI's transformative potential.
Catch the latest episode

Services

Services
Services AI Care

Juniper AI Care Services Revolutionize Your Service Experience

Our industry-first AI-Native services couple AIOps with our deep expertise across the full network life cycle. You can move from reactive response to proactive insight and action.
Explore AI Care Services
Services AI Data Center

Juniper AI Data Center Deployment Services Optimize Your AI Model Runs

We use our expertise and validated designs to help design, deploy, validate and tune networks, including GPUs and storage, to get the most from your AI infrastructure operation.
Learn about AI Data Center Deployment Services

Partners

Partners

Support and Documentation

Support and Documentation

Learn

About Juniper Training Events The Feed Resources Technology learning topics Thought leadership and insights
Audience raising hands up while businessman is speaking in training at the office.

Juniper certification and training news

See the latest
Ringing of the bell

All global events

See the latest
AI-native-now

AI-Native NOW event series

Explore events
AINN AI Innovation Impact Virtual Event

AI-Native NOW: AI Innovation and Impact

Register NOW
Juniper's Christina Hendrix at the head of a conference table. With the text "The NOW Way to Network" overlayed, with "NOW" emphasizing the "O" in green color.

The NOW Way to Network

Watch the video series
AI Native Now

Executive insights

Dive deep with leading experts and thought leaders on all the topics that matter most to your business, from AI to network security to driving rapid, relevant transformation for your business.
Learn more
A keynote speaker giving a presentation at a conference. There are dozens of people sitting around them. The presentation is displayed via projector on all the walls in the room.

Leadership voices

Juniper Networks’ leaders operate on the front lines of creating the network of the future. Take a look around to see what’s on their minds.
Watch now
Bob Friday and Jessica Garrison speaking

Bob Friday Talks

Join Bob as he ventures into all the knowns -- and -- unknowns -- of AI.
Catch the latest episode
Documentation
Menu
License Guide
Quick Starts
Validated Designs
Home Documentation Juniper Security Director Cloud Juniper Security Director Cloud User Guide SRX Device Management Devices

Juniper Security Director Cloud User Guide

keyboard_arrow_up
close
keyboard_arrow_left
Juniper Security Director Cloud User Guide
Table of Contents Expand all
list Table of Contents
file_download PDF
{ "lLangCode": "en", "lName": "English", "lCountryCode": "us", "transcode": "en_US" }
English
ON THIS PAGE
keyboard_arrow_right

Add Devices

date_range 27-Mar-25
arrow_backward
arrow_forward

Overview

You can add devices to Juniper Security Director Cloud in the following ways:

Before You Begin

  • Ensure that each SRX Series Firewall port can communicate with a Juniper Security Director Cloud FQDN. The FQDN of each region is different.

    Table 1: Region to FQDN Mapping
    Region Purpose Port FQDN

    North Virginia, US

    ZTP

    443

    jsec2-virginia.juniperclouds.net

    Outbound SSH

    7804

    srx.sdcloud.juniperclouds.net

    Syslog TLS

    6514

    srx.sdcloud.juniperclouds.net

    Ohio, US

    ZTP

    443

    jsec2-ohio.juniperclouds.net

    Outbound SSH

    7804

    srx.jsec2-ohio.juniperclouds.net

    Syslog TLS

    6514

    srx.jsec2-ohio.juniperclouds.net

    Montreal, Canada

    ZTP

    443

    jsec-montreal2.juniperclouds.net

    Outbound SSH

    7804

    srx.jsec-montreal2.juniperclouds.net

    Syslog TLS

    6514

    srx.jsec-montreal2.juniperclouds.net

    Frankfurt, Germany

    ZTP

    443

    jsec-frankfurt.juniperclouds.net

    Outbound SSH

    7804

    srx.jsec-frankfurt.juniperclouds.net

    Syslog TLS

    6514

    srx.jsec-frankfurt.juniperclouds.net

  • Use TCP port 53 and UDP port 53 to connect to Google DNS servers (IP addresses—8.8.8.8 and 8.8.4.4). The Google DNS servers are specified as the default servers in the factory settings of the SRX Series Firewalls. You must use these default DNS servers when you use ZTP to onboard the firewalls. You can use private DNS servers when you use other methods to onboard the firewalls. Note that you must make sure that the private DNS servers can resolve the Juniper Security Director Cloud FQDNs.

  • To discover and manage the device from Juniper Security Director Cloud, ensure that the netconf and ssh rate limit is set to 32 or higher on the device. For more information, see Junos CLI Reference.

Add Standalone Devices, Device Clusters, or MNHA Pair Devices Using Commands

Juniper Security Director Cloud generates commands for adding a standalone device, a device cluster, or a multinode high availability (MNHA) pair devices. You can copy-paste and commit the commands into the device console, after which the devices are discovered and added to Juniper Security Director Cloud. For more information about MNHA, see the High Availability User Guide.

  1. Click SRX > Device Management > Devices.
    The Devices page is displayed.
  2. Click +.
    The Add Devices page is displayed.
  3. Click Adopt SRX Devices.
  4. Select one of the following options:
    • SRX Devices to add standalone devices.
    • SRX Clusters to add device clusters.
    • SRX Multi-node High Availability (MNHA) to add MNHA pairs.
  5. Enter the number of standalone devices, device clusters, or MNHA pairs to be added and click OK.
    Note:

    You can add a maximum of 50 standalone devices, device clusters, or MNHA pairs at a time. An MNHA pair consists of 2 devices. So, if you enter 1, both the devices in the MNHA pair are added.

    A success message is displayed and the standalone device, device cluster, or MNHA pair and its devices are displayed on the Devices page.
    Note:

    At this point, Juniper Security Director Cloud has not yet completely added the device. So the Management Status column displays Discovery Not Initiated status.

  6. In the Management Status column, click Adopt Device or Adopt Cluster.
    Note:

    If you added an MNHA pair, the Adopt Device link is displayed for each MNHA pair device.

    The Adopt Devices page opens with the commands that you need to commit to the device.
  7. Copy and paste the commands to your device edit prompt, and press Enter. If you are adding a device cluster, paste the commands to the cluster's primary device's CLI. If you are adding an MNHA pair, paste the commands to each device in the pair.
  8. Type Commit and press Enter to commit the changes to the device.
    The device discovery process is initiated in Juniper Security Director Cloud. You can refresh the Devices page and see the status Discovery in progress in the Management Status column. You can view the job status on the Jobs page.

After discovery is complete, the status in the Management Status column changes to Up. If the discovery fails, Discovery failed status is displayed. Hover over the Discovery failed status to see the reason for the failure.

  • If the job fails for an MNHA pair, the deployment mode is not displayed beside the MNHA pair name. You can delete and add the MNHA pair again or initiate the discovery process again.

  • If security certificate installation job failed on a device in the MNHA pair, retry the job from the Jobs page and then reinitiate security logs configuration for the device from the Devices page.

Auto Import Behavior on Devices Added to Juniper Security Director Cloud

If you have selected the auto-import option under the Organization tab and the devices are managed using the adopt devices method and device discovery profiles, this will automatically import security policies, NAT and referred objects. See About the Organization Page.

  • The auto import process creates copies of objects that conflict with the existing objects in Juniper Security Director Cloud.

  • The auto import process does not overwrite default Content Security settings in Juniper Security Director Cloud. The existing Content Security configuration is considered instead of the imported device configuration. We recommend you review and configure the Content Security settings in Juniper Security Director Cloud before managing the device. See Configure the Content Security Settings.

Add Devices Using Zero Touch Provisioning

You can configure and provision devices automatically using Zero Touch Provisioning (ZTP). ZTP reduces the manual intervention for adding devices to a network. To ensure valid devices are onboarded through ZTP, you can configure Juniper Security Director Cloud to prompt you to approve or reject onboarding requests.

For supported cloud-ready SRX Series Firewalls , see Juniper Security Director Cloud Supported Firewalls.

Note:

To add other devices models, configure the basic device settings and connectivity, and add the device using Add Standalone Devices, Device Clusters, or MNHA Pair Devices Using Commands.

Power on the devices to add to Juniper Security Director Cloud.
  1. Click SRX >Device Management > Devices.
    The Devices page is displayed.
  2. Click Add Devices.
    The Add Devices page is displayed.
  3. To manually enter the device details, click Register SRX Devices for ZTP, and do the following:
    1. Enter the serial number of the device.
    2. Set a root password for the device with at least six alphanumeric and special characters without spaces.
    3. To add multiple devices, click + and enter the device details.
    4. To use the same root password for all devices, select Use this password for all devices in Device 1.
    5. Click OK.
  4. To upload device information as a CSV file, click Register Devices for ZTP > Upload CSV File, and do the following:
    1. Click Download sample CSV file to download the CSV file template to enter the device details.
    2. Add the serial number and root password of the devices in the CSV file.
    3. Click Browse and upload the CSV file.
    4. Click OK.

The devices are added and displayed on the Devices page and the device discovery process is initiated.

If Juniper Security Director Cloud is configured to prompt you to approve or reject onboarding requests for devices through ZTP, a link to approve or reject the request is displayed in the Management Status column. See Approve or Reject Onboarding Requests for ZTP Devices.

Add Device by Scanning QR Code

You can add cloud-ready SRX Series Firewalls to Juniper Security Director Cloud by scanning the QR code available on the firewall. Your SRX Series Firewall is cloud-ready if it has a QR claim code on the front or the back panel.

Ensure the following:

  • The firewall is powered on.

  • The firewall is not already added in an organization. You can add a firewall in only one organization.

  1. Scan the QR code on the SRX Series Firewall using a mobile device that is connected to the Internet.
  2. Click the displayed link to go to the Juniper Security Director Cloud login page.
  3. Enter your account email address and password and click Login.
    If you do not have an account, go to https://sdcloud.juniperclouds.net on a different device, create an account, and then retry.
  4. Select the organization to add the firewall.
  5. Enter the root password for the firewall with a minimum of six characters without spaces and click Add Device.
    The firewall is added to Juniper Security Director Cloud and the device discovery is automatically initiated. You can log in to the portal and manage the firewall after the discovery is complete.
    Note:

    After you log in, the session is valid for 60 minutes. During this time, you can add multiple firewalls without entering the account email address and password.

Approve or Reject Onboarding Requests for ZTP Devices

The Approve/reject device onboarding requests toggle button on the Organization page must be enabled to receive onboarding requests.

Zero Touch Provisioning (ZTP) reduces the manual intervention for adding devices to a network. However, to ensure valid devices are onboarded through ZTP, you can configure Juniper Security Director Cloud to prompt you to approve or reject onboarding requests for devices.

When you enter an incorrect serial number, an onboarding request is not generated. It ensures that only devices with valid serial numbers are added in Juniper Security Director Cloud.

  1. In the Management Status column for the device, hover over the Onboarding Request(s) link .
    The options to approve or reject the request are displayed.
    Note:

    You must approve or reject a request within 14 days. After 14 days, the device is automatically removed from Juniper Security Director Cloud.

  2. To approve the request and initiate device discovery, perform the following steps:
    1. Click Approve Onboarding Request(s).
      You are prompted to confirm if you want to approve the request.
    2. Click OK.
      The device discovery process is initiated and Discovery in progress status is displayed in the Management Status column. When the discovery is complete, Up and In Sync statuses are displayed in Management Status and Inventory Status columns respectively. If the discovery failed, you can check the details on the Jobs page.
      Note:

      You can reject the request anytime before the discovery process is initiated. If the discovery is initiated, you can only delete the device from Juniper Security Director Cloud. See Delete Devices.

  3. To reject the request, click Reject Onboarding Request(s).
    The Onboarding Request(s) Rejected status is displayed as a link. You can hover over the link and approve the request later.
    Note:

    You must approve or reject a request within 14 days. After 14 days, the device is automatically removed from Juniper Security Director Cloud.

See Also

arrow_backward PREVIOUS Devices Overview
NEXT arrow_forward Enroll SRX Series Firewalls from ATP Cloud to Juniper Security Director Cloud
footer-navigation

© 1999 - 2025 Juniper Networks, Inc. All rights reserved.

Scroll to top