USP Viewer

Overview

The USP Viewer lets you to create, view, modify and delete Unified Security Policies (USPs). New USPs can be built from scratch or based on a predefined template.

Before you create a new USP, make sure all the required zones have been created (see Network Zones); zones can be added or removed later.

Compliance Templates

SecureTrack comes with predefined USP templates based on network segregation as specified in common regulations and standards. These include PCI-DSS, ISO 27001, NERC CIP, NIS 800-53 and custom best practices and let you define a connectivity policy on your network.

What Can I Do Here?

Create a USP Zone From Scratch

  1. Click +ADD USP. The Create USP screen is displayed.

  2. Enter the USP name.

  3. Select domain - available only when you are authorized to two or more domains.
  4. To add zones, click on one or more zones in the Available Zones window and then click on > or click >> to move all zones. Hold down the Ctrl or Shift keys for multiple selection.

  5. To remove zones, click on one or more zones in the Selected Zones window and then click on > or click >> to remove all zones. Hold down the Ctrl or Shift keys for multiple selection.

    By default there is a maximum of 100 zones in a USP. If you require a USP with more than 100 zones, contact Tufin support.

  6. After you have added zones to the USP, you can set the policy for each zone .

  7. (optional) Enter the USP description.

  8. Click Create.

Back to Top

Edit a USP

Add or remove zones in the USP. To set or change the policy between zones see USP Builder.

  1. Select the checkbox for the desired USP and click Actions > Edit USP.

  2. Change the USP name, domain (if you have authorization to multiple domains) and description as required.

  3. To add zones, click on one or more zones in the Available Zones window and then click on > or click >> to move all zones. Hold down the Ctrl or Shift keys for multiple selection.

  4. To remove zones, click on one or more zones in the Selected Zones window and then click on > or click >> to remove all zones. Hold down the Ctrl or Shift keys for multiple selection.

    By default there is a maximum of 100 zones in a USP. If you require a USP with more than 100 zones, contact Tufin support.

  5. Click Save.

See also Exporting and Importing USPs in the USP Builder.

Filter the Displayed USPs

Filter the USPs listed using TQL.

Sort Field (can order by)

  • Name

All Fields

Field Name Description Field Type / Example Values

appliedToAnyDomain

True: Select only USPs that apply to all domains

False: Select only USPs that don't apply to all domains

True, False

description

USP Description

String

domain.name

Select only USPs to which this domain has been assigned

String

name

USP Name

String
zones.name

Name of a zone in the USP

String

Example:

name contains 'usp1' and zones.name contains 'zone2'

Delete USPs

Select the checkbox for one or more USP cards and click Actions > Delete USP.

How Do I Get Here?

From the menu, go to Browser > USP Viewer.

Back to Top