Create Access Control List elements
An Access Control List defines a group of granted elements for which an administrator has rights.
If an Administrator Role gives the rights to install policies and browse logs and alerts, you must apply the Administrator Role to NGFW Engines in the Administrator element. The Access Control Lists that you create can include engines and policies.
The predefined Access Control Lists (in ) allow you to give access to all elements of a certain type. When you create an element, it is automatically added to the relevant default Access Control List. For example, a new Firewall element is automatically included both in the ALL Elements and ALL Firewalls Access Control Lists.
If you change the permissions for existing administrator accounts, the administrators are notified that their permissions have changed the next time that they log on to the Management Client.
For more details about the product and how to configure features, click Help or press F1.
Steps
-
Select
Configuration, then
browse to Administration.
Access Control List Properties dialog box
Use this dialog box to change the properties of an Access Control List.
| Option | Definition |
|---|---|
| Name | The name of the element. |
| Comment (Optional) |
A comment for your own reference. |
| Add | Adds the selected elements to the Granted Elements list. |
| Remove | Removes the selected elements from the Granted Elements list. |
| Granted Elements | Shows the elements that an administrator has been given permission to edit and install when their Administrator Role would otherwise prevent them from doing so. |