Create Dynamic Attributes Filters
Dynamic attributes filters that you define using the Cisco Secure Dynamic Attributes Connector are exposed in the CDO as dynamic objects that can be used in access control policies. For example, you could restrict access to an AWS server for the Finance Department to only members of the Finance group defined in Microsoft Active Directory.
You cannot create dynamic attributes filters for GitHub, Office 365, or Azure Service Tags. These types of cloud objects provide their own IP addresses.
For more information about access control rules, see Create Access Control Rules Using Dynamic Attributes Filters.
Before you begin
Complete all of the following tasks:
Do any of the following:
Enter the following information.
To add or edit a query, enter the following information.
Click Show Preview to display a list of networks or IP addresses returned by your query.
When you're finished, click Save.
(Optional.) Verify the dynamic object in the CDO.