Hi,
I'm trying hard to move over from NSM to Space. Running the latest versions of both Space and SD.
Some things has been very nice, such as export and import of policys with comments from NSM.
Other things such as some devices is imported incorrectly isnt one of the good things.
One of the major issue right here and now is that devices is shown as "in sync" in both Space and SD.
But after I made CLI changes, SD insists on commitin the old changes as well. The changes on this device is related with VPN profiles.
Under Security Director Devices, "Update configuration in platform" shows nothing to update.
But under Devices->Device Management. Choosing Device Configuraiton->Review Deploy, it shows the big difference that exists and states:
Generated configuration change form Security Director Configuration (3 items)
<config, set and delete...>
When making any changes to a policy or VPN a big splash shows
"Warning - Some of the selected devices have theur status as Device changed" and some may have consolidated configuration in 'created' or 'approved' states. Device update may cause conflict with consolidated configuration changes. Do you want to coninute with Publish and update?"
Under SD and Security Director Devices, the option "import device changes" is grayed out. And the device is "in sync".
One way is to delete the device, but that shouldnt be the right way to do this.
I have similar issues with a branch device that has secure features enabled that requires reboot when adding or deleting. So not to fun to do it because of Space/SD is causing some kind of hickup. And I wont be able to go to 15.2 when it arrives since Juniper has removed support for some of their security products (hard to believe but it's true).
Anyone with similar experience?
//Rob