Page tree
    Skip to end of metadata
    Go to start of metadata

    You create or edit a PATROL Agent Access Control List (ACL) by specifying conditions about the Agent that must be met. This topic provides the following information about creating and maintaining PATROL Agent ACLs:

    PATROL Agent ACL editor

    The PATROL Agent ACL editor provides menus, lists, and text boxes that you can use to construct the condition statements, as shown in the following image. When the ACL contains multiple conditions, you can indicate whether the statements are optional or required by choosing a logical operator.

    ACLs in authorization profiles

    When you specify a PATROL Agent ACL on the Objects tab of the Authorization Profile editor, users can access only the PATROL Agents that meet the ACL criteria.

    Condition properties

    1Opening parentheses
    2Property 
    3Comparison operator
    4Value 
    5Closing parentheses 
    6Add condition 
    7Remove condition 
    8Logical operator

    Condition guidelines

    You must specify every attribute in a condition statement. Use double and triple open and closing parentheses to nest properties. The following table lists the properties and comparison operators that you can use to construct condition statements.

    Tip

    To view the entire width of the table, press the f key to view this page in Full Screen mode.

    Comparison operator next

     

    Property


    contains

    does not
    contain

    does not
    equal 
    ends
    with 
    equalsgreater
    than 
    greater than
    or equal 
    in the
    range 
    starts
    with 
    less
    than 
    less than
    or equal 

    matches1
    Agent Host Name  +++   +  +
    Agent Port  + +++  ++ 
    Agent version  + +++  ++ 
    Agent Operating System++          
    Agent IP Address2  + +  +    
    Agent Tag    +       
    BMC TrueSight Infrastructure Management Integration Service  + +   +   
    BMC TrueSight Infrastructure Management Server  +++   +   

    1 – You can use Java regular expressions to specify patterns.

    2 – For IPv6, you must specify patterns with Java regular expressions.

    Tip

    Because all new rows are added to the end of the list and you cannot move condition statements, carefully plan the PATROL Agent ACL and its conditions before creating it.

     

    To create an ACL

    1. From the navigation pane, select Administration > PATROL Agent ACL
    2. On the PATROL Agent ACLs page, select the page action menu  to access the Create ACL page. 
    3. Enter a name and description for the ACL.
    4. Using the menus, text boxes, and lists, define the first condition statement.
    5. (Optional) Create a new condition:
      1. Select  to add a new row.
      2. Using the menus, text boxes, and lists, define the first condition statement.
    6. If necessary, select  to remove a row. 
    7. (Optional) Finish constructing the ACL by repeating steps 5 and 6 as necessary.
    8. Select Save.

     

    To edit an ACL

    When editing an ACL, you can add or remove rows or change any of the existing properties, including the name and description of the ACL.

    1. From the navigation pane, select Administration > PATROL Agent ACL
    2. From the action menu for the ACL to edit, select Edit.
    3. Follow the steps under To create an ACL.

    To delete an ACL

    1. From the navigation pane, select Administration > PATROL Agent ACL
    2. From the action menu for the ACL to edit, select Delete, and then confirm the deletion.

    To view an ACL

    When you choose this option to view an ACL, you cannot make any changes. 

    1. From the navigation pane, select Administration > PATROL Agent ACL
    2. From the action menu for the ACL to edit, select View.

    Related topics

    Managing authorization profiles

    PATROL Agent ACLs

    Performing actions on a PATROL Agent