Versions Compared

Old Version 49

changes.mady.by.user Gary Leicht

Saved on

compared with

New Version 50

changes.mady.by.user Gary Leicht

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  • IPAM HostsSelect this to add IPAM hosts and DHCP ranges hosts  to your network scope. IPAM hosts and DHCP ranges can also be added to a policy using tags.  When adding tags to IPAM host or DHCP range, any tag-based changes in scope-based on tags can take up to 5 minutes to take effect. To To associate a security policy with an IPAM host or DHCP range, do the following:

    1. Select an available IPAM host from those listed under AVAILABLE HOSTS on the Manage IPAM Hosts panel to add to your security policy.
    2. Clickto add the IPAM host to your security policy. Or, click  to add all available IPAM Hosts to your policy. To remove a previously selected IPAM hosts, click
    3. Click Save followed by clicking Finish to complete the configuration process, or click Next to proceed to the next step of the configuration process.

  • Tags: Select this to add user-defined tags to your network scope. When the network scope includes an object included in multiple policies, then the policy precedence order will determine which policy is enforced. Changes in policy tagging are updated by the system and may take up to 5 minutes to complete. When multiple tagging changes occur to a security policy, the policy will reflect the most recent change to the policy. Network scope can be defined using tags for DNS Forwarding Proxy, Endpoints, Endpoint Groups, IPAM networks, individual IPs, IPAM Host objects, and ranges. Policy rules can be defined using tags for custom lists as well as application and category filters. For more information on tags, see Applying Tags.
  • Metadata: Select this to add Metadata to your network scope. Network scope for BloxOne Endpoint can be defined using metadata for operating systems and endpoint version. To configure metadata, do the following:
    • ATTRIBUTE:  Select an attribute from among the listed options in the drop-down list. Attributes supported include Endpoint Version and OS Family
    • VALUE: Select a value from among the listed options in the drop-down list to associate with the attribute. You can use the search tool to find a specific value. Values supported for endpoint include Current and Previous. Values supported for operating systems include Windows, MacOS, Linux, MacOS, Linux, ChromeOS, iOS, and Android.
    • For each source you have added, click Add. The source appears in the table. You can click the Add Source menu again to choose another source for your network scope.
    • After you define your network scope, you can proceed to add policy rules, set precedence order and bypass codes.
    • Click Next in the wizard to define policy rules. For more information, see Adding Policy Rules and Setting Policy Precedence.

...