Cisco Cisco Firepower Management Center 4000

Select 

The Intrusion Policy page appears.

Click the edit icon (

) next to the policy you want to edit.

If you have unsaved changes in another policy, click 

 to discard those changes and continue. See 

 for information on saving unsaved changes in another 

policy.

The Policy Information page appears.

Click 

 in the navigation panel on the left.

The Advanced Settings page appears.

You have two choices, depending on whether 

under Specific Threat Detection is 

enabled:

If the configuration is enabled, click 

.

If the configuration is disabled, click 

, then click 

.

The Sensitive Data Detection page appears.

A message at the bottom of the page identifies the intrusion policy layer that contains the configuration. 
See 

 for more information.

You have the following options:

To create a custom data type, click the 

 sign next to 

 on the left side of the page. The Add 

Data Type pop-up window appears.

Specify a unique data type name and the pattern you want to detect with this data type and click 

, 

or click 

 to abandon your edits. See 

 for more information.

The Sensitive Data Detection page appears. If you clicked 

, the page updates to display your 

changes.

To modify any of the options that are common to predefined and custom data types, click the data 
type name in the 

 page area.

The Configuration page area updates to display the current settings for the data type. See 

 for more information.

To edit the system-wide name and data pattern for a custom data type, see 

.

To delete a custom data type, click the delete icon (

) next to the data type you want to remove 

and then click 

, or click 

 to abandon deleting the data type.

Note that you cannot delete a data type when the sensitive data rule for that data type is enabled in 
any intrusion policy. Deleting a custom data type deletes it from all intrusion policies.

Protection