On This Page
USP Viewer
Overview
The USP Viewer lets you to create, view, modify and delete Unified Security Policies (USPs). New USPs can be built from scratch or based on a predefined template.
Before you create a new USP, make sure all the required zones have been created (see Network Zones); zones can be added or removed later.
Compliance Templates
SecureTrack comes with predefined USP templates based on network segregation as specified in common regulations and standards. These include PCI-DSS, ISO 27001, NERC CIP
What Can I Do Here?
-
Create a USP from scratch - click +ADD UNIFIED SECURITY POLICY and select your own zones.
-
Create a USP from a template - click +ADD UNIFIED SECURITY POLICY and select the appropriate template.
-
Edit a USP - select USP > Actions > Edit USP.
-
Filter the displayed USPs - on name, description, zones.name
-
View a selected USP - click on the desired USP
-
Delete USPs - select one or more USPs > Actions > Delete
Create a USP Zone From Scratch
-
Click +ADD USP. The Create USP screen is displayed.
-
Enter the USP name.
- Select domain - available only when you are authorized to two or more domains.
-
To add zones, click on one or more zones in the Available Zones window and then click on > or click >> to move all zones. Hold down the Ctrl or Shift keys for multiple selection.
-
To remove zones, click on one or more zones in the Selected Zones window and then click on > or click >> to remove all zones. Hold down the Ctrl or Shift keys for multiple selection.
By default there is a maximum of 100 zones in a USP. If you require a USP with more than 100 zones, contact Tufin support.
-
After you have added zones to the USP, you can set the policy for each zone .
-
(optional) Enter the USP description.
-
Click Create.
Edit a USP
Add or remove zones in the USP. To set or change the policy between zones see USP Builder.
-
Select the checkbox for the desired USP and click Actions > Edit USP.
-
Change the USP name, domain (if you have authorization to multiple domains) and description as required.
-
To add zones, click on one or more zones in the Available Zones window and then click on > or click >> to move all zones. Hold down the Ctrl or Shift keys for multiple selection.
-
To remove zones, click on one or more zones in the Selected Zones window and then click on > or click >> to remove all zones. Hold down the Ctrl or Shift keys for multiple selection.
By default there is a maximum of 100 zones in a USP. If you require a USP with more than 100 zones, contact Tufin support.
-
Click Save.
See also Exporting and Importing USPs in the USP Builder.
Filter the Displayed USPs
Filter the USPs listed using TQL.
Sort Field (can order by)
- Name
All Fields
Field Name | Description | Field Type / Example Values |
---|---|---|
appliedToAnyDomain |
True: Select only USPs that apply to all domains False: Select only USPs that don't apply to all domains |
True, False |
description |
USP Description |
String |
domain.name |
Select only USPs to which this domain has been assigned |
String |
name |
USP Name |
String |
zones.name |
Name of a zone in the USP |
String |
Example:
name contains 'usp1' and zones.name contains 'zone2'
Delete USPs
Select the checkbox for one or more USP cards and click Actions > Delete USP.
How Do I Get Here?
From the menu, go to Browser > USP Viewer.