Cisco Cisco Firepower Management Center 4000

Admin/Access Admin/Network Admin

Select 

.

The Access Control page appears.

Click the edit icon (

) next to the access control policy you want to configure.

The policy Edit page appears.

Click the device targets link, then click 

.

The Manage Device Targets pop-up window appears.

Optionally, click the 

 prompt above the 

 list, then type a name.

The list updates as you type to display matching devices. You can click the clear icon (

) to clear the 

list.

Click the device or device group you want to add. Use Ctrl and Shift to select multiple devices.

You can also right-click an available device, then click 

.

Click 

.

Selected devices are added.

You can also drag and drop.

Optionally, click the delete icon (

) to delete a device from the list of selected devices; or, use the Ctrl 

and Shift keys to select multiple devices, right-click, then select 

.

Click 

 to save your configuration, or click 

 to discard it.

If you click 

, you configuration is added to the policy and the policy Edit page appears.

FireSIGHT

When an access control rule blocks a user’s HTTP request, what the user sees in a web browser depends 
on how you block the session. When choosing a rule action, select:

 or 

 if you want to deny the connection. A blocked session times out; the system 

resets Block with reset connections. However, for both blocking actions, you can override the 
default browser or server page with a custom page that explains that the connection was denied. The 
system calls this custom page an HTTP response page. 

 or 

 if you want to display an HTTP response page that 

warns users, but also allows them to click a button to continue or refresh the page to load the 
originally requested site. Users may have to refresh after bypassing the response page to load page 
elements that did not load.