11-49
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter11 Configuring Security Manager Administrative Settings
Rule Expiration Page
Rule Expiration Page
Use the Rule Expiration page to define the default values for policy rule expiration. When you create
policies for some types of policy rules (such as access rules), you can set an expiration date for the rule,
and Security Manager can notify you by e-mail of the approaching expiration date.
You must configure an SMTP server to enable e-mail notifications. For more information, see
Configuring an SMTP Server and Default Addresses for E-Mail Notifications, page1-25.
Navigation Path
Select Tools > Security Manager Administration and select Rule Expiration from the table of
contents.
Field Reference
Default Source Ports The port range value that is used as the default source port range for
service objects. You can choose one of the following:
Use all ports—Includes all ports from 1 to 65535.
Use secure ports—Includes all ports from 1024 to 65535.
If you change the default source ports, you must manually redeploy any
previously deployed devices that might be affected. These changes
might not be reflected in any open activities until you refresh the data.
For more information on port list objects, see Configuring Port List
Objects, page 6-87.
Enable AutoComplete
Dropdown Box
Whether to have Security Manager list matching service and port list
names as you type them when you create a service. You can then easily
select from names you have already defined. If you deselect
AutoComplete, you have to remember the complete service and port list
names and type them in yourself.
Save button Saves your changes.
Reset button Resets changes to the previously applied values.
Restore Defaults button Resets values to Security Manager defaults.
Table11-28 Policy Objects Page (Continued)
Element Description
Table11-29 Rule Expiration Page
Element Description
Notify Email The default e-mail address that should receive notifications of rule
expiration. Users can override this address when configuring individual
rules.
Notify Before Expiration The default number of days before a rule expires that Security Manager
should send the e-mail message. Users can override this value when
configuring individual rules.
Sender The e-mail address that Security Manager will use for sending e-mail
notifications.