Cisco Cisco Firepower Management Center 4000

The system creates one or more baseline shared host profiles. You can edit or delete these shared 
host profiles as described in 

 and 

. To add any other shared host profiles you might need, continue with the 

next step.

To skip surveying your network, continue with the next step.

Next to 

, click the add icon (

).

The settings for the new shared host profile appear.

In the 

 field, type a descriptive name for the shared host profile.

From the 

, 

, and 

 drop-down lists, pick the operating system and version for 

which you want to create a shared host profile.

Specify the application protocols you want to allow. You have three options:

To allow all application protocols, select the 

 check box.

To allow no application protocols, leave the 

 check box cleared.

To allow specific application protocols, next to 

, follow the directions in 

Specify the clients you want to allow. You have three options:

To allow all clients, select the 

 check box.

To allow no clients, leave the 

check box cleared.

To allow specific clients, follow the directions in 

.

Specify the web applications you want to allow. You have three options:

To allow all web applications, select the 

 check box.

To allow no web applications, leave the 

check box cleared.

To allow specific web applications, follow the directions in 

.

Specify the protocols you want to allow.

To add a protocol, next to 

, follow the directions in 

. Note that ARP, IP, TCP, and UDP are always allowed.

Click 

 to save your changes.

The shared host profile is created. You can now add the shared host profile to any compliance white list.

FireSIGHT

Modifying a shared host profile changes the profile for all the white lists it belongs to. For the white lists 
that use the shared host profile and are also used in an active correlation policy, modifying a shared host 
profile may bring hosts into or out of compliance, but does not generate white list events.