Greetings Cisco Community,
I am looking to automate the process of adding intrusion rules to a Firepower device (FMC version 6.2.0). I was hoping to be able to use the REST API for this purpose, but looking through the documentation, it's unclear to me whether this action is supported.
Is adding Snort rules via the REST API supported? I apologize if I've overlooked something obvious.
Thanks in advance,
Today it is not possible to modify or Tune IPS policy with the REST API. To add and adjust Snort rules in Firepower Management Center you must use the UI.
All you can do with the API and identify and IPS policy and apply it to to rules.