Views:
  1. Go to Agents > Firewall > Profiles.
  2. For users using the built-in administrator account or users with full management permissions, optionally enable the Overwrite agent security level/exception list option to replace the Security Agent profile settings with the server settings.
  3. To add a new profile, click Add. To edit an existing profile, select the profile name.

    A profile configuration screen appears. See Adding and Editing a Firewall Profile for more information.

  4. To delete an existing profile, select the check box next to the policy and click Delete.
  5. To change the order of profiles in the list, select the check box next to the profile to move, and then click Move Up or Move Down.

    Apex One applies firewall profiles to Security Agents in the order in which the profiles appear in the profile list. For example, if the agent matches the first profile, Apex One applies the actions configured for that profile to the agent. Apex One ignores the other profiles configured for that agent.

    Tip:

    The more exclusive a policy, the better it is at the top of the list. For example, move a policy you create for a single agent to the top, followed by those for a range of agents, a network domain, and all agents.

  6. To manage reference servers, click Edit Reference Server List. Reference servers are endpoints that act as substitutes for the Apex One server when it applies firewall profiles. A reference server can be any endpoint on the network (see Reference Servers for more information). Apex One makes the following assumptions when you enable reference servers:

    • Security Agents connected to reference servers are online, even if the agents cannot communicate with the Apex One server.

    • Firewall profiles applied to online Security Agents also apply to Security Agents connected to reference servers.

    Note:

    Only users using the built-in administrator account or those with full management permissions can see and configure the reference server list.

  7. To save the current settings and assign the profiles to Security Agents:
    1. Select whether to Overwrite agent security level/exception list. This option overwrites all user-configured firewall settings.
    2. Click Assign Profile to Agents. Apex One assigns all profiles on the profile list to all the Security Agents.
  8. To verify that you successfully assigned profiles to Security Agents:
    1. Go to Agents > Agent Management. In the agent tree view drop-down box, select Firewall view.
    2. Ensure that a green check mark exists under the Firewall column in the agent tree. If the policy associated with the profile enables the Intrusion Detection System, a green check mark also exists under the IDS column.
    3. Verify that the agent applied the correct firewall policy. The policy appears under the Firewall Policy column in the agent tree.
Parent topic: Firewall Profiles