SaaS Security
Modify Active SaaS Policy Rule Recommendations
Table of Contents
Modify Active SaaS Policy Rule Recommendations
Learn how to modify active SaaS policy rule recommendations for SaaS Security Inline.
| Where Can I Use This? | What Do I Need? |
|---|---|
|
Or any of the following licenses that include the SaaS Security Inline license:
|
As SaaS Security Inline continuously adds new SaaS apps to the Application Dictionary, you must determine if
you want to modify your existing SaaS policy rule recommendations to reflect such
advancements. For example, if you have a recommendation to block risky file sharing
apps and a new, risky file sharing app displays in the App Dictionary, consider
adding that SaaS app to your existing rule. SaaS Security Inline automatically
pushes these updates to your firewall, and your firewall administrator manually
imports the changes and updates the rulebase.
If you're modifying a tenant-level policy recommendation,
there are potential side effects that you must communicate to your NGFW
administrator. When a tenant-level policy recommendation is imported on the
firewall, an application group and one or more custom applications are also created.
These custom applications identify the application tenants, the user activities to
detect, and the response actions to take. Modifying and reimporting this policy
recommendation does not automatically delete these application objects, which can
have unexpected consequences. If you change the response action for selected tenant
activities or deselect a tenant activity, make sure the firewall administrator
deletes the custom application for the earlier response action or tenant
activity.
- Log in to Strata Cloud ManagerSelect .In the table, locate the rule recommendation that you want to modify.In the Policy Name column, click on the name of the rule recommendation to open the rule recommendation.Modify the existing recommendation and Save the recommendation.
