Configuring rule scopes

Rule scopes are used at the definition of some customized security rules (see the Setting up customized security rules guide) to help defined the context (scope) of these rules.

Defining scopes as separate entities makes it easier to reuse them across several rules. Any changes made to the scopes will immediately take effect in all the rules that use these scopes.

To configure rule scopes, Go to CONFIGURE→Rule scopes in the console’s menu and select the scope group you wish to work on (Locations, Networks, etc.)

 

Locations

Location are geographical areas defined in a tree hierarchy.

You can add a new level to the tree (i.e. a group of locations) by clicking the Add Location Group button.
Define the group name and set its position in the location tree by defining its parent group.

To add a specific location, click the Add Location button.
You can pan-and-zoom the map to get to the desired location or type in the location or address in the search box and selecting the location from the dropdown list.
If you provide a known location like a city name or country name and want to define it as the location area, you can click the Create Location based on selection button to mark this area.
To define a more specific location area, select either the Polygon, the Square, or the Circle icons and mark your desired area.
Click the Next button, provide a name for the area, place in the appropriate Location group, and click the Create button.

 

Networks

You can define frequently used networks and tag them and then use these networks and tags in your custom rules.

We recommend you start by defining tags that represent categories or groups of networks you wish to use in the rules, such as CorporateEmployees, CorporateGuests, etc.
To add a new tag, select the Tags tab and click the Add Tags button.
type in a tag name and click Enter. Repeat for additional tags, then click the Add button.

Now add some networks.
To add a new network, select the Networks tab and click the Add Networks button.
type in a network name (SSID) and click Enter. Repeat for additional networks, then click the Add button.

Now, to associate networks to tags, go to the Networks tab, check all the networks you want to associate with a tag and click the Bulk Actions button. Select Add Tags, click on the blank line and add the relevant tags from the list, then click the Add button.

Use the three-dots icon () to the right of Tags and Networks in their lists to edit, delete or associate individual networks and tags.

 

IP Addresses Ranges

IP ranges are used to white-list or black-list source IPs of service login and service admin activity.

To add a new IP range, follow these steps:

  • click the Add New IP Range button
  • Type in a name for your IP range
  • Select a category (at the moment, there are two IP range categories that are used as rule scope – Corporate and Risky)
  • Select the way you would like to define the range – either using CIDR notation or selecting countries (based on ISP location).
  • Add IP ranges or countries
  • click the Save button

 

Collaborators

The Collaborators scope is used to group together persons. It is used for rules that deal with collaboration of sensitive resources.

A Collaborators group can be built using emails, domains, user names, user groups, or a mix of all the above.

Collaborators scopes are referenced at the rule using their tags, so make sure you provide one or more tags to your Collaborators scope.

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.