Support Support Downloads Knowledge Base Case Manager My Juniper Community

Knowledge Base

Search our Knowledge Base sites to find answers to your questions.

Ask All Knowledge Base Sites All Knowledge Base Sites JunosE Defect (KA)Knowledge BaseSecurity AdvisoriesTechnical BulletinsTechnotes Sign in to display secure content and recently viewed articles

[SRX-IDP] Cannot delete configuration under "Security IDP" stanza



Article ID: KB27182 KB Last Updated: 04 Mar 2017Version: 2.0
An administrator may want to remove the configuration under #security idp, but every time they go to delete it, it is not deleted, even though a show|compare shows that it will be deleted.
An administrator cannot delete IDP policies configured under #security idp.  Despite show|compare showing that it will delete it. After deleting it, the IDP configuration is still present.
This is due to the templates.xsl system script being in place. With it present, whenever a configuration is committed, it will install the configuration for those pre-defined templates for IDP.
The solution is to mark the system script as inactive or to delete it. To delete the system script and delete security IDP, enter the following:

delete system scripts commit file templates.xsl
delete security idp

To inactivate the script and delete the IDP config, enter the following:

deactivate system scripts commit file templates.xsl
delete security idp
Comment on this article > Affected Products Browse the Knowledge Base for more articles related to these product categories. Select a category to begin.

Getting Up and Running with Junos

Getting Up and Running with Junos Security Alerts and Vulnerabilities Product Alerts and Software Release Notices Problem Report (PR) Search Tool EOL Notices and Bulletins JTAC User Guide Customer Care User Guide Pathfinder SRX High Availability Configurator SRX VPN Configurator Training Courses and Videos End User Licence Agreement Global Search