Creating a new tag

To create custom security tags, go to
Manage > Tags
page of
Operations Director
. Symantec-defined tag categories and tags are listed on this page. The
Author
column in the grid on the
Manage > Tags
page displays
System
for tags that are shipped with
Operations Director
.
  1. To create a new tag
  2. Click the
    +
    icon to add a new tag.
  3. On the
    Add Tag
    page, enter a name, description, and select or type a category for the tag.
    The name and category fields are mandatory.
    The name and category fields do not accept the following special characters
    ! $ % ^ & * ( ) [ ] + | ~ = ` { } : " ; ' < > ? , . / \
  4. Under
    Mandates
    section, select the mandates that you want to map to the tag. This step is optional.
  5. Under
    Select Security Controls and Policies
    , select at least one IDS/IPS policy or anti-malware policy or firewall template.
    • IDS/IPS is intrusion detection service and intrusion prevention service that is available only after you configure
      Data Center Security: Server Advanced
      successfully.
      Expand
      IDS/IPS
      and select a policy.
    • Anti-malware policies are available only after you configure
      Data Center Security: Server
      successfully.
      Expand
      Anti-malware
      and select a policy.
    • Firewall lists the
      Palo Alto Networks Next Generation Firewall
      templates.
      Palo Alto Networks Next Generation Firewall
      must be configured successfully. Firewall template applies the firewall rules of
      Palo Alto Networks Next Generation Firewall
      .
      Expand
      Firewall >
      Palo Alto Networks Next Generation Firewall
      . The available templates are listed. Select a template to apply to the appropriate firewall rules. Make sure to select one firewall template for every application type. This way the tag you create gets mapped to
      Palo Alto Networks Next Generation Firewall
      rules with the help of the firewall template that you select.
  6. Under
    Map Security Questions
    section, select at least one question and its response to map to the tag.
    If you select the same question twice make sure that the responses that you select for the questions are unique.
    All available questions in
    Operations Director
    on the
    Manage > Questions
    page are also listed under the drop-down. The list of questions can contain draft as well as published questions.
  7. Click
    Save
    to save the new tag.
  8. This tag is listed in the list of tags in a draft state.
    You must publish the tag. Only after you publish the tag, the tag is recommended by
    Operations Director
    when the server administrator responds to the security assessment from the vSphere Web client.