Overriding a Profile's Security Configuration

A profile can have its own firewall policy, wireless client role policy, WEP shared key authentication, NAT policy, and VPN policy (controllers and service platforms only) applied. If an existing firewall, client role, or NAT policy is unavailable, navigate to Profiles → Configuration → Security and create the required security policy configuration. Once created, apply overrides to meet the changing data protection requirements of a device's environment. When this is done, however, the device must now be managed separately from the profile configuration shared by other devices within the managed network.

For more information on applying an override to an existing device profile, refer to the following sections:

Override General Security Settings
Override Certificate Revocation List (CRL) Configuration
Override RADIUS Trustpoint Configuration
Override VPN Configuration
Override Auto IPSec Tunnel Settings
Override NAT Configuration
Override Bridge NAT Configuration
Override Application Visibility Settings