Security rules that allow SSL, web-browsing, or “any” application may allow unsanctioned SaaS applications that can introduce security risks to your network. To give you visibility into those applications, SaaS Security administrators can recommend security rules for specific SaaS apps. You can review, import, and commit (push) those recommendations to your Security policy for enforcement.

SaaS Policy Recommendations created under ManageConfigurationSaaS Security are moved to the Policy Recommendations tab in Web Security.

When the SaaS Security Administrator pushes a new SaaS rule recommendation, its name, description, and the action you can take for it to appear in this table.

Shows the status of the SaaS rule recommendation. See if a rule has been imported, removed, has an update available, or if an import has failed.

Use text search to find rules.

Show or hide columns to improve visibility.

(Import) - Import a rule from the New SaaS Rule Recommendations table down to the Imported SaaS Rules table for enforcement. You’ll see details about the rule before importing it.

Turn on to update imported rules automatically.

(Update) - Update an imported rule. You’ll see what’s changing with a rule before updating. This action is grayed out when no update is available.

(Remove) - Remove an imported rule. You’ll see this icon next to a rule that’s scheduled to be deleted in the next automatic update.

(Policy Detail) - View details of an imported rule.

Rules you import from the New SaaS Rule Recommendations table appear here in this table.