Add a Service Object Group

In Cisco Secure Access, a Service Object Group is a collection of Service Objects and other Service Object Groups. After you add a Service Object Group in Secure Access, you can view the details for the resource. For more information, see View Service Objects and Groups.

Table of Contents

• Guidelines: Add Service Object Groups in Secure Access
• Prerequisites
• Procedure
• View Service Object Groups

Guidelines: Add Service Object Groups in Secure Access

• Review the recommendations for adding Network and Service Objects in your organization. For more information, see General Limits for Groups.

• A Service Object Group must have a unique name for all Service Object Groups in the organization.

• A Service Object Group can include Service Objects and other Service Object Groups. Secure Access supports three levels of nested groups.

  

• Secure Access does not support circular dependencies of groups in Service Object Groups.

Prerequisites

• Full Admin user role. For more information, see Manage Accounts.

Procedure

Add a Service Object Group in Secure Access. When you configure a Service Object Group, select the Service Objects and other Service Object Groups to include in the group.

You can create new Service Objects and add these resources to the group.

You can also add composite service information in the Service Object Group. Composite service information is not reusable in the organization.

1. Navigate to Resources > Network and Service Objects.

   

2. On Service Objects, navigate to Service objects and groups, and then click Add service object group.

3. On Add New Service Object Group, navigate to General.

a. For Name, enter a unique name for the Service Object Group. Secure Access supports a sequence of 1–255 alphanumeric, space, hyphen, and underscore characters.
b. For Description, enter text that describes the Service Object Group.

4. Navigate to Group Values, and then navigate to Select objects or groups.

5. Click Select objects and groups and add non-reusable values.

6. Click Select objects, choose from the lists of configured Service Objects and Service Object Groups.

7. Click Add non-reusable value.
   a. Choose a protocol—TCP, UDP, ICMP, or ANY.
   b. Enter a port or range of ports.
   c. Click Save.

   

8. Click + Create Object.

   a. For Name, enter a unique name for the Service Object. Secure Access supports a sequence of 1–255 alphanumeric, space, hyphen, and underscore characters.
   b. For Description, enter text that describes the Service Object.

   c. For Protocol, choose a protocol for the Service Object.
   Note: Select Any to add any protocols for the Service Object.

   d. For Port, enter a port or range of ports.
   Separate the range of ports with a hyphen (-), for example, 1024-6500.

   e. Click Add.

9. Click Add Service Group.

Add a Service Object < Add a Service Object Group > Import CSV File of Service Objects