After you have created access policies and have set up AppProtection, you can create dynamic rules to automatically create AppProtection policies to inspect the traffic of your domains.

To add a dynamic rule to an AppProtection profile:

1. Go to Policies > Cybersecurity > Inline Security > Protection Policies.
2. Click Add Dynamic Rule.

The Add Dynamic Rule window appears.

3. In the Add Dynamic Rule window, enter the following information:

• Step 1: Select Policies
  1. On the Select Policies tab in the General Information section, select access policies from the drop-down menu. Access policies with enabled with privileged approvals do not appear as they are bypassed by dynamic rules.
  2. Click Next.

  See image.

  

  Close

  Close
• Step 2: Profile Details

  On the Profile Details tab, in the Selected Access Policies section, the access policies that you selected in the previous step are listed.

  1. In the AppProtection Profile section, select the AppProtection Profile Type, either a Default Profile or an Existing Profile. If you attempt to select the Default Profile option and a default AppProtection profile already exists, an error appears. If you select Existing Profile, you need to then select an existing AppProtection profile from the drop-down menu.
  2. Click Next.

  See image.

  

  Close

  Close
• Step 3: Create Policies

  On the Create Policies tab, in the Profile and Policies section, the AppProtection profile and the access policies you selected in the previous steps are listed.

  1. To automatically create AppProtection policies, select the Auto create AppProtection policies checkbox.
  2. Click Save and Review.

  See image.

  

  Close

  Close
• Step 4: Review

  On the Review tab, review your dynamic rule configuration, then click Save.

  See image.

  

  Close

  Close