Adaptive Security Platform
Policy Generator ensures the process of creating optimal security segmentation policies for any type of workload (bare-metal, virtual machines, containers) is simple—regardless of where it’s running.
Policy Generator is a simple workflow built into the Adaptive Security Platform® (ASP). It pairs with Illumio ASP's labeling and policy modeling capabilities to provide an easy-to-use interface for creating segmentation policies. It matches historical connections, the processes these flows communicate with, and workload labels to automatically suggest policies for controlling intra- and inter-application traffic.
Simplify collaboration between application owners and security
Policy Generator allows you to build segmentation policies that protect critical applications. You can assign different teams ownership of different applications using role-based access control (RBAC):
- Application owners can use Policy Generator to review flows and create segmentation policies for individual applications, but they will not have the ability to approve and provision those policies—this is typically the responsibility of another group to ensure a separation of duties. Application owners...
The most fascinating thing about Illumio is their simplicity with respect to policy creation. The UI shows a simplistic map view, which helps admin to create rules without in depth knowledge about the networking components."