Guides
Secure Access Help Center

Rule Defaults: Default Settings for Access Rules

When you create a new access rule, the rule is configured with the default rule settings unless you select other options in the rule. The rule defaults are a collection controls for endpoint security posture and security profiles, and the zero trust authentication interval property. To change the default rule settings, see Edit Rule Defaults and Global Settings.

🚧

Important Information About Changing Rule Defaults

If you change a rule default, all existing rules that are configured to use a particular rule default will change to use the new default.

For example, if you change the default IPS Profile from Balanced Security and Connectivity to Maximum Security, the IPS profile in all existing rules that are configured to use the default IPS Profile will now use the Maximum Security settings for IPS.

Existing rules that are configured to use custom settings are not affected by changing the rule default. To determine whether a rule uses default or custom settings, see About the Access Policy.

Table of Contents

Zero Trust Access: Endpoint Posture Profiles

These profiles specify end-user device requirements when connecting to private resources using Zero Trust Access.

There are two types of profiles to choose from:

  • Client-based—Choose this as the default profile for devices on which the Cisco Secure Client is installed.
  • Browser-based—Choose this as the default profile for devices on which the Cisco Secure Client is not installed.

For more information about Zero Trust posture profiles, see Manage Zero Trust Access Posture Profiles.

Zero Trust Access: User Authentication Interval

This feature is sometimes called "step-up authentication."

Specify the default frequency with which end users must verify their identity, in order to connect to any private resource using client-based zero trust access. When disabled, users are not prompted to re-authenticate to the network.

Note: The default interval is three days.

For more information, see Network Authentication for Zero Trust Access.

Intrusion Prevention (IPS)

Enable or disable intrusion prevention by default for all new private access rules. When IPS is enabled, you can choose a default intrusion prevention profile for all new rules.

For more information about IPS profiles, see Manage IPS Profiles.

Edit the Order of the Rules on the Access Policy Page< Rule Defaults: Default Settings for Access Rules > Global Settings for Access Rules

Updated 1 day ago