Create Access Control List elements
An Access Control List defines a group of granted elements for which an administrator has rights.
If an Administrator Role gives the rights to install policies and browse logs and alerts, you must apply the Administrator Role to NGFW Engines in the Administrator element. The Access Control Lists that you create can include engines and policies.
The predefined Access Control Lists (in ALL Elements and ALL Firewalls Access Control Lists.
) allow you to give access to all elements of a certain type. When you create an element, it is automatically added to the relevant default Access Control List. For example, a new Firewall element is automatically included both in theIf you change the permissions for existing administrator accounts, the administrators are notified that their permissions have changed the next time that they log on to the Management Client.
For more details about the product and how to configure features, click Help or press F1.
Steps
Access Control List Properties dialog box
Use this dialog box to change the properties of an Access Control List.
Option | Definition |
---|---|
Name | The name of the element. |
Comment (Optional) |
A comment for your own reference. |
Granted Elements |
Shows the elements that an administrator has been given permission to edit and install when their Administrator Role would otherwise prevent them from doing so. Click Add to add an element to the list, or Remove to remove the selected element.CAUTION: Administrators who have permissions to edit the properties of NGFW
Engines can configure the Management Client to run arbitrary commands in the NGFW Engine operating system.
|