On This Page
Using Search
Rule Lifecycle Management App (RLM) includes a powerful search feature, which is especially useful when you have a large amount of data. This feature allows you to filter information and is incorporated into the Pending and My Queue windows.
Use the Search Feature
-
Click in the Search box. A list of possible search parameters appears depending on the current window. For a complete listing, see Field Names.
-
Select a parameter and type a value between the single quotes.
-
You can press Enter to search or add additional parameters.
Supported Operators
You can use AND or OR operators to combine parameters and narrow the search results. The AND and OR operators have the same precedence, and are parsed from left to right.
-
AND: Combine parameters in the search query.
-
OR: Search for one of the parameters in the search query.
Field Names
The field names that can be used in the query are specific to the window and appear when you click the search bar.
| Field Name | Description | Values / Format |
|---|---|---|
| acl_name | ACL name for Cisco devices | String |
| applications.name | Applications included in the rule. |
String * |
| business_owner_email | Email address for the business owner. | String |
| business_owner_name | Name of the business owner. | String |
| certification_date | Date when the rule was certified. | String |
| certification_expiration_date | Date when the rule will finish. | String |
| certification_status | Status for the rule certification. | String |
| comment | Comment for the rule. | String |
|
description |
Description for the rule. |
String |
|
destinations.data |
Data about the service. |
String |
|
destinations.name |
IP address of the destination. |
String |
|
device.domain_name |
Domain name |
String |
|
device.name |
Device name. |
String |
|
device.parent_name |
Name of the device's parent (if the device has a parent, such as with Palo Alto devices). |
String |
|
expire_date |
Date on which the rule will expire. |
String |
|
from_zone.name |
Source zone for the rule. |
String |
|
install_on |
Device name on which the rule is installed. |
String |
|
last_hit |
Last date that the rule hit. |
String |
|
last_modified |
Last date that the rule was modified. |
String |
|
logged |
Rule is logged. |
Enabled/Disabled |
|
owners.name |
Name of the owner. |
String |
|
permissiveness |
Permissiveness level. |
HIGH, LOW, MEDIUM |
|
policy_name |
Name of the policy. |
String |
|
recert_ticket.scw_ticket_id |
Rule status. |
String |
|
recertification.status |
Status for the recertification process (see Tracking Implementation Progress) |
Possible values:
|
|
rule_name |
Name of the rule. |
String |
|
rule_number |
Number of the rule. |
String |
|
services.data |
Data about the service. If the service is a group, the data includes all of the group's protocols and ports. The user can search for these protocols and ports inside the service. |
String |
|
services.name |
Service name. |
String * |
|
sources.data |
Data about the assets in the source. |
String |
|
sources.name |
IP address of the source. |
String |
|
tech_owner |
Technical owner for the rule. |
String |
|
to_zone.name |
Destination zone for the rule. |
String |
