Cisco Cisco Firepower Management Center 2000
13-9
FireSIGHT System User Guide
Chapter 13 Using Access Control Policies
Configuring Policies
•
the edit icon (
) does not appear on the Access Control page
•
the delete icon (
) does not appear on the Access Control page
•
the quick-apply pop-up window applies only the intrusion policy
•
access control policy check boxes in the detailed apply pop-up window are disabled
Managing Policy Targets
License:
Any
Before you can apply an access control policy, you must identify the managed devices, including device
groups, where you want to apply the policy. You can identify the managed devices you want to target
with your policy while creating or editing a policy. You can search a list of available devices and add
devices to a list of selected devices. You can drag and drop selected devices, or add devices using the
button between the two lists.
groups, where you want to apply the policy. You can identify the managed devices you want to target
with your policy while creating or editing a policy. You can search a list of available devices and add
devices to a list of selected devices. You can drag and drop selected devices, or add devices using the
button between the two lists.
Note that you cannot target stacked devices running different versions of the FireSIGHT System (for
example, if an upgrade on one of the devices fails). You can target a device stack, but not individual
devices within the stack. See
example, if an upgrade on one of the devices fails). You can target a device stack, but not individual
devices within the stack. See
for more information.
The following table summarizes the actions you can take when managing targeted devices.
The following procedure explains how to configure an access control policy to manage targeted devices.
See
See
for the complete procedure for editing an access
control policy.
Table 13-5
Targeted Device Management Actions
To...
You can...
search a list of available devices
click inside the search field, then type a search string. The
list of devices updates as you type to display matching device
names.
list of devices updates as you type to display matching device
names.
clear a search for available devices
click the clear icon (
) in the search field.
select available devices to add to the list
of selected targets
of selected targets
click the device name; use the Ctrl and Shift keys to select
multiple devices.
multiple devices.
Tip
You can also right-click an available device, then
click
click
Select All
.
add selected devices
click
Add to Policy
.
Tip
You can also drag and drop into the list of selected
devices.
devices.
delete a single device from the Selected
Devices list
Devices list
click the delete icon (
) next to the device.
Tip
You can also right-click the device and select
Delete
.
delete multiple devices from the
Selected Devices list
Selected Devices list
use the Ctrl and Shift keys to select multiple devices,
right-click to highlight the row for a selected device, then
click
right-click to highlight the row for a selected device, then
click
Delete Selected
.
save your configuration
click
OK
.
discard your configuration without
saving your changes
saving your changes
click
Cancel
.