CSA Rules
Rules are the smallest enforcement component in relation to the enforcement hierarchy. There are several rule types available that enable you to limit, monitor, and control interaction on agent-protected systems. Rules can deny or allow interaction with the local agent user interface, allow or prevent network access, and control file usage. To better understand rule definition, you first need to grasp several concepts shared across the many rule types, such as user and system states. The next sections cover those shared concepts.
Understanding State Sets
State sets are a new concept introduced in the CSA 4.5 release. This feature enables you to define rules that can be distributed to the remote agents as part of normal polling that ...
Get Cisco Security Agent now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
