Device Support Levels

SIP supports devices at five levels. Each level adds additional capabilities in configuration visibility, usage insights, and policy management. These levels are reflected for each device on the Supported Devices list.

Exceptions to this list will be noted on the device's onboarding page.

Level 1: Configuration Retrieval

SIP retrieves and stores the device’s raw configuration.

Capabilities

Manual or scheduled configuration retrieval
Configuration version history
Configuration comparison (diff view)
Email notifications when changes occur

Level 2: Normalized Configuration View

Adds a standardized, easy-to-read configuration display.

Additional Capabilities

Visual network map display (interfaces, routes, connections)
SIQL queries
Access to reporting features (policy tests, audit checks, rule analysis, etc.)
Compliance assessments

Level 3: Usage and Change Detection

Adds real-time or near real-time awareness of configuration changes and rule usage.

Additional Capabilities

Automatic configuration update triggered by syslog change events
Rule usage tracking (including object-level usage where supported)
Real-time and offline log processing
Traffic Flow Analysis (TFA) for selected rules

Level 4: Behavioral Analysis

Models the full path a packet takes through the device.

Additional Capabilities

Determines packet interfaces, zones, policies, rules, NAT, and routing decisions
Supports Risk Analysis and Access Path Analysis (APA)
Enables rule planning and recommendation features

Level 5: Automation

Allows rule and object changes to be made directly from SIP.

Additional Capabilities

Create, modify, or delete:
- Security rules
- Network and service objects, including groups
- Include attributes such as applications, users, zones, and schedules
- Changes are staged via the device’s management platform (or directly for some devices)