Creating a Rule Modification Workflow

Overview

Multiple Rule Owners could disagree about the certification decision for a rule. For example, one Rule Owner wants to certify their networks in the rule and another Rule Owner wants to decertify their networks in the rule. In this case, the App Administrator opens the Rule Modification workflow, and RLM passes the network information for the rule. Using this workflow, the Handler reconciles the disagreement by removing the decertification owner's networks so that the rule can be certified. There is no limit to the number of steps for this workflow; each step must include a Rule Modification field. This workflow is only available for devices that support rule modification.

Create the Workflow

1. Create Step 1 to open the ticket. RLM passes the required network information to the rule modification field. The Handler submits the ticket.

2. Create Step 2 to the last step. The Handler removes all networks that are marked for decertification, pushes the data to the firewall using the Designer, and clicks Done to close the ticket.

RLM monitors this rule until it is provisioned in SecureTrack. RLM retrieves updated rule information during subsequent syncs with SecureTrack. For information about processing Rule Modification tickets, see Managing Certification Decision Conflicts (App Administrator).