We have 3 Juniper SA6500 FIPS boxes for SSLVPN (2 in a cluster).
As is always the case, upper managent decided we needed yet another device, to centrally manage what amounts to 2 different machines...
Setting up the SA boxes was a real treat.
So they bought this NSMExpress...
It's been in the box for the last 8 months, but now I've been asked to get it into place..
First boot...boot hung and wouldn't come back...was told by support to re-image using USB stick (great first impression).
After a lenghty re-image, i'm at the CLI when I set the IP address and network config and passwords..
Then I go to the https://ip_address/administration and login....
Apparently this box is running software version 2009.1r1a, and it looks NOTHING like the Juniper SSLVPN boxes.
I'm apparently supposed to run the setup for a Regional Server (if I only have one box, shouldn't it be a central server?? and what is the difference...not covered in documentation)
Following the quickstart guide for the NSMexpress 2009.1, (http://www.juniper.net/techpubs/software/management/security-manager/nsm2009_1/nsmxpress-quick-start.pdf)
is a rather painful experience...
I can't find the license info, so I go to a base install..
I have DNS and syslog configured...
I figured I'd try updating it...maybe newer version are more user friendly...
and so, I go to system update, and it spits out this message...so now I am stuck..
warning: rpmts_HdrFromFdno: V3 DSA signature: NOKEY, key ID 9f01527e The GPG keys listed for the "NSMxpress - 5 - Updates" repository are already installed but they are not correct for this package. Check that the correct key URLs are configured for this repository. Setting up Update Process Setting up repositories Reading repository metadata in from local files Resolving Dependencies --> Populating transaction set with selected packages. Please wait. ---> Package nsmxpress-release.i386 6:5-4.5.nsmx5.152894 set to be updated --> Running transaction check Dependencies Resolved ============================================================================= Package Arch Version Repository Size ============================================================================= Updating: nsmxpress-release i386 6:5-4.5.nsmx5.152894 update 6.3 k Transaction Summary ============================================================================= Install 0 Package(s) Update 1 Package(s) Remove 0 Package(s) Total download size: 6.3 k Downloading Packages: Public key for nsmxpress-release-5-4.5.nsmx5.152894.i386.rpm is not installed Retrieving GPG key from http://download.juniper.net/software/nsmxpress/public/RPM-GPG-KEY-nsmxpress-1 GPG key at http://download.juniper.net/software/nsmxpress/public/RPM-GPG-KEY-nsmxpress-1 (0x22C36A80) is already installed Yum Update Failed
Any recommendations? Is the NSM always this user unfriendly?