USP Viewer

Overview
What Can I Do Here?
How Do I Get Here?

Overview

The USP Viewer lets you to create, view, modify and delete Unified Security Policies (USPs). New USPs can be built from scratch or based on a predefined template.

Before you create a new USP, make sure all the required zones have been created (see Network Zones); zones can be added or removed later.

Compliance Templates

SecureTrack comes with predefined USP templates based on network segregation as specified in common regulations and standards. These include PCI-DSS, ISO 27001, NERC CIP, NIS 800-53 and custom best practices and let you define a connectivity policy on your network.

What Can I Do Here?

Create a USP from scratch - click +ADD UNIFIED SECURITY POLICY and select your own zones.
Create a USP from a template - click +ADD UNIFIED SECURITY POLICY and select the appropriate template.
Edit a USP - select USP > Actions > Edit USP.
Filter the displayed USPs - on name, description, zones.name
View a selected USP - click on the desired USP
Delete USPs - select one or more USPs > Actions > Delete

Create a USP Zone From Scratch

Click +ADD USP. The Create USP screen is displayed.
Enter the USP name.
Select domain - available only when you are authorized to two or more domains.
To add zones, click on one or more zones in the Available Zones window and then click on > or click >> to move all zones. Hold down the Ctrl or Shift keys for multiple selection.
To remove zones, click on one or more zones in the Selected Zones window and then click on > or click >> to remove all zones. Hold down the Ctrl or Shift keys for multiple selection.

By default there is a maximum of 100 zones in a USP. If you require a USP with more than 100 zones, contact Tufin support.
After you have added zones to the USP, you can set the policy for each zone .
(optional) Enter the USP description.
Click Create.

Edit a USP

Add or remove zones in the USP. To set or change the policy between zones see USP Builder.

Select the checkbox for the desired USP and click Actions > Edit USP.
Change the USP name, domain (if you have authorization to multiple domains) and description as required.
To add zones, click on one or more zones in the Available Zones window and then click on > or click >> to move all zones. Hold down the Ctrl or Shift keys for multiple selection.
To remove zones, click on one or more zones in the Selected Zones window and then click on > or click >> to remove all zones. Hold down the Ctrl or Shift keys for multiple selection.

By default there is a maximum of 100 zones in a USP. If you require a USP with more than 100 zones, contact Tufin support.
Click Save.

See also Exporting and Importing USPs in the USP Builder.

Filter the Displayed USPs

Filter the USPs listed using TQL.

Sort Field (can order by)

Name

All Fields

Field Name	Description	Field Type / Example Values
appliedToAnyDomain	True: Select only USPs that apply to all domains False: Select only USPs that don't apply to all domains	True, False
description	USP Description	String
domain.name	Select only USPs to which this domain has been assigned	String
name	USP Name	String
zones.name	Name of a zone in the USP	String

Example:

name contains 'usp1' and zones.name contains 'zone2'

Delete USPs

Select the checkbox for one or more USP cards and click Actions > Delete USP.

How Do I Get Here?

From the menu, go to Browser > USP Viewer.