Cisco Cisco FirePOWER Appliance 8130
13-28
FireSIGHT System User Guide
Chapter 13 Using Access Control Policies
Managing Access Control Policies
You can use either of these policies the same as you use policies you create.
The following table describes the actions you can take to manage your policies on the Access Control
policy page:
policy page:
Creating an Access Control Policy
License:
Any
When you create a new access control policy you must, at minimum, give it a unique name and specify
a default action. Although you are not required to identify the policy targets at policy creation time, you
must perform this step before you can apply the policy; see
a default action. Although you are not required to identify the policy targets at policy creation time, you
must perform this step before you can apply the policy; see
You have the following options when selecting a default action for a new policy:
•
Block all traffic
creates a policy with the
Access Control: Block All Traffic
default action.
•
Intrusion Prevention
creates a policy with the
Intrusion Prevention: Balanced Security and Connectivity
default action.
•
Network Discovery
creates a policy with the
Network Discovery Only
default action.
After you create the access control policy, you can modify the default action. For guidance on choosing
a default action, see
a default action, see
.
To create an access control policy:
Access:
Admin/Access Admin/Network Admin
Table 13-8
Access Control Policy Management Actions
To...
You can...
create a new access control policy
click
Create Policy
. See
for more
information.
modify the settings in an existing
access control policy
access control policy
click the edit icon (
). See
for more
information.
apply an access control policy to all
devices targeted for the policy
devices targeted for the policy
click the policy apply icon (
). See
for more information.
determine what changed in policies to
make them out of date on a device
make them out of date on a device
click the red status message to see the detailed apply view, then click
Out-of-date
for
the policy and device where you want to see what changed. See
and
for more information.
copy an access control policy
click the copy icon (
information.
view a PDF report that lists the current
configuration settings in an access
control policy
configuration settings in an access
control policy
click the report icon (
). See
for more information.
compare access control policies
click
Compare Policies
. See
for
more information.
delete an access control policy
click the delete icon (
), then click
OK
, or click
Cancel
if you decide not to delete
the policy. When prompted whether to continue, you are also informed if another user
has unsaved changes in the policy.
has unsaved changes in the policy.