Manage rules for intended access
Here are the different ways you can manage rules for intended access in Risk Monitor.
View rules for intended access
To view a list of all rules for intended access and see the details of a specific rule:
-
On the menu bar, select the Configuration cogwheel icon, and then select Intended Access from the menu on the left side of the screen.
A list of created rules, if any, is shown on the lower half of the Create tab on the Intended Access view.
-
Select the plus icon to the left of a rule name in the list to see more details of the configuration for that rule.
Create rule for intended access
-
On the menu bar, select the Configuration cogwheel icon, and then select Intended Access from the menu on the left side of the screen.
-
In the Rule Name box, enter a descriptive name for the rule.
The name will be displayed in the list of rules.
-
In the Applications box, select the application or applications only certain departments or users should access.
-
Specify the departments and/or users that are allowed access to the selected applications, by doing one or both of the following:
-
In the Department box, select one or more departments that are allowed access to the selected applications.
-
In the User box, select one or more users that are allowed access to the selected applications.
-
-
Select Save.
A message confirming that the rule has been created will appear.
When one or more rules have been created, you can explore any breaches to the rules on the Unauthorised application usage dasboard.
You can also create an alert to be notified if and when the rules for intended access are breached. If such an alert already exists, the rule you just created will automatically be included in the criteria for triggering the alert.
Remove rule for intended access
When a rule is removed, it will no longer be included in any alerts or feed information to the Unauthorised application usage dashboard. However, any breaches of the rule that occurred while the rule was active will still be displayed on the page.
To remove a rule for intended access:
-
Go to the list of rules for intended access, see View rules for intended access.
-
Select Remove in a row to remove the rule in that row.
A message confirming that the rule has been removed will appear.