Cisco Cisco FirePOWER Appliance 7030
27-14
FireSIGHT System User Guide
Chapter 27 Using the FireSIGHT System as a Compliance Tool
Creating Compliance White Lists
Step 1
On the Create White List page, under
Allowed Host Profiles
, click
Any Operating System
.
The settings for the global host profile appear.
Step 2
To specify the application protocols you want to allow, follow the directions in
Step 3
To specify the clients you want to allow, follow the directions in
Step 4
To specify the web applications you want to allow, follow the directions in
.
Step 5
To specify the protocols you want to allow, follow the directions in
Note that ARP, IP, TCP, and UDP are always allowed.
Creating Host Profiles for Specific Operating Systems
License:
FireSIGHT
Host profiles for specific operating systems indicate not only which operating systems are allowed to
run on your network, but also the application protocols, clients, web applications, and protocols that are
allowed to run on those operating systems. For a more detailed introduction, see
run on your network, but also the application protocols, clients, web applications, and protocols that are
allowed to run on those operating systems. For a more detailed introduction, see
To create a new compliance white list host profile for a specific operating system:
Access:
Admin
Step 1
Next to
Allowed Host Profiles
, click the add icon (
).
The settings for the new host profile appear.
Step 2
In the
Name
field, type a descriptive name for the host profile.
Step 3
From the
OS Vendor
,
OS Name
, and
Version
drop-down lists, pick the operating system and version for
which you want to create a host profile.
Step 4
Specify the application protocols you want to allow. You have three options:
•
To allow all application protocols, leave the
Allow all Application Protocols
check box selected.
•
To allow no application protocols, clear the
Allow all Application Protocols
check box.
•
Step 5
Specify the clients you want to allow. You have three options:
•
To allow all clients, leave the
Allow all Clients
check box selected.
•
To allow no clients, clear the
Allow all Clients
check box.
•
.
Step 6
Specify the web applications you want to allow. You have three options:
•
To allow all web applications, leave the
Allow all Web Applications
check box selected.
•
To allow no web applications, clear the
Allow all Web Applications
check box.