Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


rule (casb-policy)


Hierarchy Level


Configure Cloud Access Security Broker (CASB) policy rule. CASB policy rule includes set of match criteria defining the conditions that must be satisfied to apply the policy and a set of actions to be performed in case of a match—allow, deny, or log actions.


match rule-name

Define a match criteria for matching the traffic in CASB policy rule. You can specify following:

  • application application-name—Enter the supported application name.
  • application-group application-group-name—Enter the supported application-group name.
  • activity—Configure activity-parameters for shared-activity option. You can configure this optional statement to have even more granular control over traffic.
  • instance instance-name—Enter an application instance.

Define the action for the match condition by specifying—allow/deny and log-actions.

Required Privilege Level

security—To view this statement in the configuration.

security-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 24.2R1.