You can use PATROL Agent Access Control Lists (ACLs) to restrict user access to specific PATROL Agents. You can specify ACLs as objects in authorization profiles. Each ACL contains one or more conditions that identify specific Agents. If you do not specify a PATROL Agent ACL in an authorization profile, those users can access all PATROL Agents.
A PATROL Agent ACL that specifies "Host name matches .*.labs.acme.com" restricts the user to those PATROL Agents on systems that have host names ending with .labs.acme.com. Users associated with this authorization profile cannot access any PATROL Agents on other systems.
PATROL Agent ACLs are not designed to segregate devices. You can set up monitoring policies to automatically segregate PATROL agents based on various criteria. For example, you can create a monitoring policy to monitor all PATROL Agents that run on Windows. For information about creating monitoring policies, seeTo create a monitoring policy.
From the PATROL Agent ACLs page, you can perform the actions identified in the following image:
A different type of object
When you specify other types of objects in an authorization profile, you enable access. PATROL Agent ACLs are different in that they restrict access to PATROL Agents not specified in the ACL.