This article provides information on how to add a ScreenOS device to NSM via NSM auto-discovery.
Setup required on the firewall
SSH:
Enable SSH on the management or source interface, which is used for communication between NSM and firewall and the interface that is used for receiving SNMP requests.
fwjuniper1-> set int <interface-name> manage ssh
<interface-name>
is the management interface or the interface being used for communication between NSM and the firewall.
SNMP:
On the firewall, you can enable SNMP V1, SNMP V2c, or SNMP V3. To enable SNMP V1 or SNMPV2c on the firewall, refer the following articles:
When configuring the SNMP community, for the host address, use the IP address of the NSM device.
SNMPV3 is supported from screen OS 6.3 or later:
To enable SNMPV3 on the firewall, refer to KB22675 - Configuration and working of SNMPV3 polling on ScreenOS.
Required setup required NSM:
- Ensure that the ScreenOS firewall is reachable from NSM:
- Logon to the NSM GUI as a super user.
- Go to Configure > Device Manager > Device Discovery Rules:

- Configure the Device Discovery Rule:
For SNMP V1 and V2c:
The below image is for SNMPV1 communication via a community string. For using SNMPV2C, select SNMP V2C as the SNMP version. The community string configured on the firewall should be the same as the community string setup on the NSM. The SSH username and password is the firewall's root username and password:

For SNMP V3, the USM username and the encryption/authentication parameters should match those set up on the firewall:

- Run Device Discovery:

- Import the SSH key:

- Discovering the device, connecting to the device, adding the device, and importing the device configuration: