Setting Owner Mapping

Overview

The App Administrator configures the logic that the Rule Lifecycle Management App (RLM) uses to map owners to rules based on owner assets.

Select a Calculation Method

In Settings () menu > Owners and Assets > Asset to Rule Relevance section, select a calculation method:

  • SUPERSET: This is the recommended option. RLM matches a rule to an owner if the asset IP address fully matches, or partially matches, at least one object in the rule.

    In the case of negated rules, a rule will only be mapped to an owner if the owner assets and at least one rule object have no assets in common.

  • SUBNETWORK: Owner assets are a subset of the larger network of rule objects, and may not include all of its assets. RLM matches a rule to all owners assigned to assets that fall within the relevant network.

    In the case of negated rules, RLM will only match if there is no overlap between the owner assets and the objects listed in the rule.

Assign a Default Owner

  • Default owner group: This group, which must have at least one member, is responsible for mediating tickets for which owners disagree about the certification decision. For cases in which there are multiple assets for a rule, if at least one asset has a Rule Owner, RLM will not assign the Default owner group to the rule.

  • Default owner group matches on: RLM uses the "match on" parameter to access whether it needs to search for an IP in the source, the destination, or both.

    Option

    Description

    Source RLM will scan the Source field of every rule. If no owner is associated with any asset in the source, it will assign the default owner. It is possible that the default owner will be assigned to a rule in addition to another owner. This will happen if a Rule Owner was assigned to an asset in the destination, but there was no owner assigned to any IPs in the source.  
    Destination RLM will scan the Destination field of every rule. If no owner is associated with any asset in the destination, it will assign the default owner. It is possible that the default owner will be assigned to a rule in addition to another owner. This will happen if a Rule Owner was assigned to an asset in the source, but there was no owner assigned to any IPs in the destination.  
    Both RLM will assign the default owner to rules that it finds with no owners.