Adds (or updates an existing) rule in Forcepoint Triton. Preserves orders of rules and modifies policy in-place if a rule exists with the exact type and value.
| Name | Description |
|---|---|
| Script Type | python |
| Tags | forcepoint, triton |
This script uses the following commands and scripts.
- ssh
| Argument Name | Description |
|---|---|
| policy | The policy/action assigned to the rule. Can be, "allow" or "deny" only. |
| type | The Triton rule type. Can be, "dest_domain", "dest_ip", "dest_host" or "url_regex". |
| value | The value to match for this rule. Can be, "domain", "regex", etc... depending on the type. |
| remoteaccessname | If the Forcepoint Triton instance is configured as a RemoteAccess integration instance ‐ insert its name here. Replaces argument "tritonsystem". |
| tritonsystem | The system name of the linux host on which Forcepoint Triton is installed. Only use this if it is not working with Triton as a RemoteAccess integration instance ‐ if so, use the "remoteaccessname" argument instead. |
There are no outputs for this script.