Viewing the rules listing

Rules are used to provision, update, and audit or enforce a configuration standard. TrueSight Network Automation rules are listed on the Rules page. Through the Rules Filter page, you can filter the list of rules based on various attributes.

To view the list of rules

1. Navigate to Network > Scripts > Rules.
   
   
   (Applicable only for version 8.9.01 and later) In the figure, the  icon indicates that a rule is not correctable and the  icon indicates that a rule set is disabled. 
   
   A rule is correctable if it meets the following conditions:
   • The rule belongs to an enabled rule set.
   • The rule is active. 
   • One or more corrective actions are defined for the rule.
   • If all of the corrective actions require that a compliant configuration must be constructed (for example, all the actions are Deploy To Active or Deploy To Stored for a configuration complying with this rule), the rule grammar is correctable. That means the system must be able to generate the compliant configuration by adding or removing lines. Some combinations of domain/subject type and frequency cannot be corrected (for example, domain of OS Image, or an additive subject of Pattern/Patterns with no corrections).

2. (Optional) Perform one of the following tasks by using the menu options that are available on the Rules page:

   Menu option	Description
   Views	Display rules matching a favorite view. See About-lists-and-views and Managing-and-sharing-views.
   Filter	Filter the rules list based on selected criteria.
   Add	Add a rule. See Adding-or-editing-a-rule.
   Print View	Print the rule list.
   Refresh	Refresh the list with any recent updates.
   Help	Display help for rules.

3. (Optional) Perform one of the following actions by clicking an icon in the Actions column on the Rules page:

   Icon	Action	Description
   	View	Display details about the rule
   	Edit	Edit the rule. See Adding-or-editing-a-rule.
   	Copy	Copy the rule Note: Any association between a rule and a security vulnerability is not copied.
   	Delete	Delete the rule

Back to top

To define a filter for the rules listing

1. Select Network > Scripts > Rules.
2. Click the Filter menu option above the list of rules.
   
   

3. Enter the following optional parameters as described in the following table:

   The [confluence_table-plus] macro is a standalone macro and it cannot be used inline. Click on this message for details.
   This macro generates standalone content. As a consequence you need to make sure to use a syntax that separates your macro from the content before and after it so that it's on a line by itself. For example in XWiki Syntax 2.0+ this means having 2 newline characters (a.k.a line breaks) separating your macro from the content before and after it.
   

   Note

   • Wild cards are permitted in all fields except in CVE ID(s). For example, entering *level* for Rule Set Name displays all rules in rule sets whose name contains the string, level.
   • The search is not case-sensitive.
   • This dialog box contains any filterable user-defined dynamic fields that have been defined for rules. You can search on the basis of these fields.
4. Click Submit.
   The rules list is displayed with the indication View: [Filtered Rules], as shown in the following figure. The filter criteria also are displayed at the top of each column.
   
   
5. Perform any of the following optional actions:
   • To refine the filter, click Filter again. Your previous selections persist in the dialog box.
   • To save this view for re-use, click Views > Save View.
   • To remove the filter, click Views > Show All Rules.

Back to top