CSM signature policy creation

Unanswered Question
Jun 22nd, 2007
User Badges:

As I said in my previous post today, we are evaluating CSM for 50 IDS/IPS 4000/IDSM sensors. Questions about policy management:


Can I take the default policy, modify signatures and deploy it down to the sensor?


Or, do I have to clone every signature in the default policy, and create a new policy and then deploy it?


When you add a device into the CSM that already has a local policy, it appears the signatures are read-only. How would I change the settings, example, add a logging parameter and then re-deploy?



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion