About Policy Planner

Policy Planner is a complete workflow solution that tightly integrates with the tools and functionality inside of Security Manager to use them during the ticket change management process. The features in both Security Intelligence Platform (SIP) modules comprise the complete SIP workflow system. As with all FireMon products, the goal of Policy Planner is to help a security administrator protect the overall security posture of an organization.

Firewall networks have many sensitive, protected areas whose access is regulated by strict permissions. The Policy Planner ticketing system allows network engineers to design or create a specific user's access to specific areas of a network and design the rules of that access. This is done using requirements, which consist of a source IP address or network object within the network, the destination IP address or network object within the network, and the service the user is using to access the destination IP address or network object.

Your ability to view and work a ticket within a given task is determined by the workflow permissions set by your administrator. Workflow tasks eliminate rule redundancy and hierarchical misplacement; they also mitigate risk and maintain your existing security posture as you add, delete or modify rules, and run assessments proactively against a proposed access on an enforcement point in order to ensure that your organization meets compliance requirements as stated in FireMon's security policy.

Policy Planner is highly extensible with fully maintained and supported API to allow for direct integration into third-party products. The end-result is a customer relationship management experience with Policy Planner in your business enterprise.

The communication protocol for Policy Planner is TCP port 443 that provides a tunnel from the browser to the application server. Port 443 provides Policy Planner access and the ability to export configurations from Security Manager over a secure socket layer (SSL).

At log in, the system determines whether the server you have licensed is Enterprise or an MSSP.

  • If your Policy Planner product is licensed as Enterprise, you will be taken directly into Policy Planner to begin working.

  • If the server is licensed as an MSSP, the system determines the number of domains available to you, and if you have access to more than one domain, you are prompted to select a domain.

  • If you have access to only one domain, the system will not display the dialog box and instead take you directly into Policy Planner using the one domain target.