Reporting: Import Rules and Rule Groups

Document created by RSA Information Design and Development on Jun 26, 2017
Version 1Show Document
  • View in full screen mode
  

The topic provides instructions to import rules and rule groups. You can import rules and rule groups from a Security Analytics instance into the rule tree in the Rule Groups panel. Rules must be in a valid binary file exported from a Security Analytics instance. You cannot import rules to a rule group. The imported files are stored in the root folder, All.

Prerequisites

Make sure that:

  • You have the rules or rule groups exported from a Security Analytics instance.
  • You understand the Rule view components. For more information, see Rule View.  

Procedure

Perform the following steps to import rules or rule groups:

  1. In the Security Analytics menu, click Administration > Reports.
    The Manage tab is displayed.
  2. Do one of the following:
    • In the Rule Groups panel, click  and select Import.
    • In the Rule toolbar, click  and select Import.
      The Import Rule dialog is displayed.
      Import_rules30.png
  3. Click Browse to browse and select the archived file containing the rules.
    You can import multiple rules and rule groups at a time. To select multiple rules or rule groups, press and hold the CTRL button and select the rules or rules groups to be imported.
  4. Click Import.

Note: During the import process, if a duplicate rule and list exists and you do not select the overwrite option, the rule and list is imported and no message about duplicate rules and lists are displayed.

 

Previous Topic:Export a Rule Group
You are here
Table of Contents > Working with Reporting Rules > Additional Rule Definition Procedures > Import Rules and Rule Groups

Attachments

    Outcomes