Creating rule sets

Rule sets group rules together and assign them to specific groups of endpoints. You can group rules into rule sets that address specific categories of sensitive information, or that monitor specific types of files.

For example, you might want to apply and monitor for specific rules on one group of endpoints, but not other groups. Or, you might want to apply a subset of the available rules to a group of endpoints.

You can view the number of rules that are assigned to each rule set, the computer groups that it targets, and whether there are any pending changes to any of the associated rules.

A rule set has no effect unless it contains at least one rule. The default rule sets contain at least one rule. The default rules cannot be edited, but you can delete them, or make a duplicate of a rule and customize it for your specific needs.

Create a rule set

  1. From the Reveal menu, click Rule Sets. Click New Rule Set.
  2. Enter a name and description for the rule set.
  3. Select one or more rules to associate with the rule set. Click Add Rules and select the rules you want to associate with the rule set. Click Assign.
  4. Under Computer Groups, click Target Computer Groups to add computer groups that you want the rule set to target. The rules that are associated with the rule set are applied to the endpoints in the computer groups you specify. Click Assign.
  5. Click Save.

Add rules to an existing rule set

  1. From the Reveal menu, click Rule Sets.
  2. Click the title of the rule set to which you want to add one or more rules.
  3. Click Edit Rule Set.
  4. Click Add Rules and select the rules you want to associate with the rule set. Click Assign.
  5. Click Save.

Delete a rule set

  1. From the Reveal menu, click Rule Sets.
  2. Select the checkbox next to the rule set that you want to delete.
  3. Click Actions > Delete. Enter your credentials to confirm that you want to delete the rule set.

Last updated: 11/1/2019 1:15 PM | Feedback