Firewall Profiles

Firewall profiles provide flexibility by allowing you to choose the attributes that a single agent or group of agents must have before applying a policy. Create user roles that can create, configure, or delete profiles for specific domains.

Users using the built-in administrator account or users with full management permissions can also enable the Overwrite agent security level/exception list option to replace the Security Agent profile settings with the server settings.

Profiles include the following:

  • Associated policy: Each profile uses a single policy

  • Agent attributes: Security Agents with one or more of the following attributes apply the associated policy:

    • IP address: Any Security Agent that has a specific IP address, an IP address that falls within a range of IP addresses, or an IP address belonging to a specified subnet

    • Domain: Any Security Agent that belongs to a certain Apex One domain

    • Endpoint: The Security Agent with a specific endpoint name

    • Platform: Any Security Agent running a specific platform type

    • Logon name: Security Agent endpoints to which specified users have logged on

    • NIC description: Any Security Agent endpoint with a matching NIC description

    • Agent location: If the Security Agent is online or offline

      Note:

      The Security Agent is online if it can connect to the Apex One server or any of the reference servers, and offline if it cannot connect to any server.

Apex One comes with a default profile named "All agents profile", which uses the "All access" policy. You can modify or delete this default profile. You can also create new profiles. All default and user-created firewall profiles, including the policy associated to each profile and the current profile status, display on the firewall profile list on the web console. Manage the profile list and deploy all profiles to Security Agents. Security Agents store all the firewall profiles on the agent endpoint.