Were you able to get the SRX connected to the IC? If this works, then you should just have to create your resource policies on the IC and it should push it to the SRX.

Dear

Thank your very much for your reply. Actually I know how to connect the SSG to IC. BUT can you give me high level steps to connect the SRX to IC and what would be the policy action to enable IC auth in policy on SRX?

I would be thankful to you

Hello,

Below are the set of commands you need to follow to integrate IC and SRX. You can also look at KB 14346 which also shares the below information. Feel free to open case with JTAC if you are looking for more information and details.

set services unified-access-control infranet-controller dev106vm26 address <Ip Address>

set services unified-access-control infranet-controller dev106vm26 interface ge-0/0/0.0

set services unified-access-control infranet-controller dev106vm26 password "$9$yvGeWxbwgZDk24ZjkqzFCtuO1h7Nb"

Apply uac enforcement in security policy:

set security policies from-zone untrust to-zone trust policy pol1 match source-address any

set security policies from-zone untrust to-zone trust policy pol1 match destination-address any

set security policies from-zone untrust to-zone trust policy pol1 match application any

set security policies from-zone untrust to-zone trust policy pol1 then permit application-services uac-policy

To Monitor the status :

show services unified-access-control status

Thanks

Sumit

JTAC