Cisco Cisco Firepower Management Center 4000

You can modify the system-wide name and detection pattern for custom sensitive data rules. Note that 
changing these settings changes them in all other policies on the system. Note also that you must reapply 
any applied access control policies that include intrusion policies that use custom data types that you 
modify.

Except for custom data type names and data patterns, all data type options are policy-specific for both 
custom and predefined data types. See 

 for 

information on modifying options other than the name and data pattern in your custom data types.

Admin/Intrusion Admin

Select 

The Intrusion Policy page appears.

Click the edit icon (

) next to the policy you want to edit.

If you have unsaved changes in another policy, click 

 to discard those changes and continue. See 

 for information on saving unsaved changes in another 

policy.

The Policy Information page appears.

Click 

 in the navigation panel on the left.

The Advanced Settings page appears.

You have two choices, depending on whether 

under Specific Threat Detection is 

enabled:

If the configuration is enabled, click 

.

If the configuration is disabled, click 

, then click 

.

The Sensitive Data Detection page appears.

A message at the bottom of the page identifies the intrusion policy layer that contains the configuration. 
See 

 for more information.

In the 

 page area, click the name of the custom data type you want to modify.

The page updates to show the current settings for the data type, and the 

 

link appears in the upper right of the Configuration page area.

Click the 

 link.

The Edit Data Type pop-up window appears.

Modify the data type name, pattern, or both and click 

, or click 

 to abandon your edits. See 

 for information on specifying the data pattern.

The Sensitive Data Detection page appears. If you clicked 

, the page displays your changes.