Creating, editing, and deleting PATROL Agent ACLs
You create or edit a PATROL Agent Access Control List (ACL) by specifying conditions about the Agent that must be met. This topic provides the following information about creating and maintaining PATROL Agent ACLs:
PATROL Agent ACL editor
The PATROL Agent ACL editor provides menus, lists, and text boxes that you can use to construct the condition statements, as shown in the following image. When the ACL contains multiple conditions, you can indicate whether the statements are optional or required by choosing a logical operator.
When you specify a PATROL Agent ACL on the Objects tab of the Authorization Profile editor, users can access only the PATROL Agents that meet the ACL criteria.
Condition properties
1 | Opening parentheses |
2 | Property |
3 | Comparison operator |
4 | Value |
5 | Closing parentheses |
6 | Add condition |
7 | Remove condition |
8 | Logical operator |
Condition guidelines
You must specify every attribute in a condition statement. Use double and triple open and closing parentheses to nest properties. The following table lists the properties and comparison operators that you can use to construct condition statements.
Tip
To view the entire width of the table, press the f key to view this page in Full Screen mode.
Comparison operator Property | contains | does not | does not equal | ends with | equals | greater than | greater than or equal | in the range | starts with | less than | less than or equal | matches1 |
---|---|---|---|---|---|---|---|---|---|---|---|---|
Agent Host Name | + | + | + | + | + | |||||||
Agent Port | + | + | + | + | + | + | ||||||
Agent version | + | + | + | + | + | + | ||||||
Agent Operating System | + | + | ||||||||||
Agent IP Address2 | + | + | + | |||||||||
Agent Tag | + | |||||||||||
TrueSight Infrastructure Management Integration Service | + | + | + | |||||||||
TrueSight Infrastructure Management Server | + | + | + | + | ||||||||
1 – You can use Java regular expressions to specify patterns. 2 – For IPv6, you must specify patterns with Java regular expressions. |
Tip
Plan the PATROL Agent ACL conditions carefully before creating them, as you cannot rearrange the conditions after you add it.
To create an ACL
- From the navigation pane, select Administration > PATROL Agent ACL.
- On the PATROL Agent ACLs page, select the page action menu to access the Create ACL page.
- Enter a name and description for the ACL.
- Using the menus, text boxes, and lists, define the first condition statement.
- (Optional) Create a new condition:
- Select to add a new row.
- Using the menus, text boxes, and lists, define the first condition statement.
- If necessary, select to remove a row.
- (Optional) Finish constructing the ACL by repeating steps 5 and 6 as necessary.
- Select Save.
To edit an ACL
When editing an ACL, you can add or remove rows or change any of the existing properties, including the name and description of the ACL.
- From the navigation pane, select Administration > PATROL Agent ACL.
- From the action menu for the ACL to edit, select Edit.
- Follow the steps under To create an ACL.
To delete an ACL
- From the navigation pane, select Administration > PATROL Agent ACL.
- From the action menu for the ACL to edit, select Delete, and then confirm the deletion.
To view an ACL
When you choose this option to view an ACL, you cannot make any changes.
- From the navigation pane, select Administration > PATROL Agent ACL.
- From the action menu for the ACL to edit, select View.
Comments
Log in or register to comment.