Manage Cloud NGFW
Add and modify the user IAM rules and permission policies required to expand or reduce their access and permissions. You can also delete a user. And individual users can view their roles and change their name or password as necessary.
Permission Policies
| Action | Local Firewall Administrator | Local Rulestack Administrator | Global Rulestack Administrator |
|---|---|---|---|
| Create a Firewall Resource | ☑ | ☐ | ☐ |
| Delete a Firewall Resource | ☑ | ☐ | ☐ |
| Describe a Firewall Resource | ☑ | ☑ | ☑ |
| List Firewall Resources | ☑ | ☑ | ☑ |
| Update a Firewall Resource Description | ☑ | ☐ | ☐ |
| Update a Firewall Content Version | ☑ | ☐ | ☐ |
| Update a Firewall Resource Subnet Mappings | ☑ | ☐ | ☐ |
📄️ List Firewall Resources
List all firewalls in the Global Firewall Admin (FMS) account and retrieve the metadata for the firewall policies that you have defined.
📄️ Create A Firewall Resource
Create an AWS Network Firewall and define configuration settings. The settings that you define at creation include firewall policy, subnets in your VPC, and tags associated with the AWS firewall resource.
📄️ Delete A Firewall Resource
Delete the specified NGFW. You can check whether a NGFW is in use by reviewing the route tables for the Availability Zones (AZs) where you have the NGFW subnet mappings.
📄️ Describe A Firewall Resource
Returns the data of a specific NGFW resource.
📄️ Update A Firewall Resource Description
Modifies the description of a specific NGFW. Use the description to help identify the NGFW when you are working with it.
📄️ Update A Firewall Resource Subnet Mappings
Update the subnet ID associated with a NGFW.