Deployment of Ivanti Policy Secure using SRX Firewall

This section describes the integration of Ivanti Policy Secure with SRX firewall. The Ivanti Policy Secure and SRX firewall solution provides functionality for enforcing application level security policies on a per user and role basis. It also delivers granular level access control so that it can be easily managed through Ivanti Policy Secure.

The authentication process is described below:

1. The endpoint connects to switch to perform the layer 2 authentication with Ivanti Policy Secure.

2. Ivanti Policy Secure communicates with authentication server and performs the layer 3 authentication along with host check to ensure that the endpoints meets the corporate policy.

3. The external authentication server such as AD/LDAP confirms the role and sends the entries to Ivanti Policy Secure.

4. Ivanti Policy Secure provisions the auth table on SRX firewall with changes in role information if any.

5. The SRX series firewall maps the user to a specific resource access policy and then provides the required access.