Cisco Cisco FirePOWER Appliance 8390
13-25
FireSIGHT System User Guide
Chapter 13 Using Access Control Policies
Organizing Rules in a Policy
Matches may occur on any page of a multi-page rule list. When the first match is not on the first page,
the page where the first match occurs is displayed. Selecting the next match when you are at the last
match takes you to the first match, and selecting the previous match when you are at the first match takes
you to the last match.
the page where the first match occurs is displayed. Selecting the next match when you are at the last
match takes you to the first match, and selecting the previous match when you are at the first match takes
you to the last match.
The following procedure explains how to search for rules in an access control policy. See
for the complete procedure for editing an access control policy.
To search for rules:
Access:
Admin/Access Admin/Network Admin
Step 1
Select
Policies > Access Control
.
The Access Control page appears.
Step 2
Click the edit icon (
) next to the access control policy you want to search.
The policy Edit page appears.
Step 3
Click the
Search Rules
prompt, type a search string, then press Enter.
Columns for rules with matching values are highlighted, with differentiated highlighting for the
indicated (first) match.
indicated (first) match.
Tip
You can also use the Tab key or click a blank page area to initiate the search.
Step 4
You have the following options:
•
To navigate between matching rules, click the next-match (
) or previous-match (
) icon.
•
To clear the search string, click the clear icon (
).
The page refreshes and highlighting clears.
Filtering Rules by Device
License:
Any
You can filter the access control rules listed in your access control policy to display only the rules for
one or more specified devices or device groups. The system uses the zone conditions in access control
rules to associate rules with devices on your network. See
one or more specified devices or device groups. The system uses the zone conditions in access control
rules to associate rules with devices on your network. See
for more information.
Rules are hidden for devices and groups that you do not specify. Rules where you do not add zones are
targeted for any zone, and therefore are targeted for all devices, so they are never hidden.
targeted for any zone, and therefore are targeted for all devices, so they are never hidden.
The following procedure explains how to filter rules by device or device group. See
for the complete procedure for editing an access control policy.
To filter rules by device or device group:
Access:
Admin/Access Admin/Network Admin
Step 1
Select
Policies > Access Control
.
The Access Control page appears.