A powerful browser extension that brings bulk operations, intelligent automation, and enhanced workflows to FireMon Security Manager, Policy Optimizer, and Policy Planner.
Streamline your security policy management with comprehensive automation and bulk operation capabilities
Automatically synchronize rule documentation and custom properties from management stations to child devices with intelligent matching.
Effortlessly manage licenses across multiple devices with intelligent parent-first processing to avoid dependency errors.
Comprehensive device management operations with scoping by device or group for precise control.
Supercharge your Policy Planner workflow with comprehensive bulk ticket management and automation capabilities.
Streamline Policy Optimizer workflows with powerful bulk actions for tickets and workflows.
Comprehensive zone mapping, duplicate detection, and access matrix reporting with HTML export.
Import and export data using CSV files for easy bulk updates, documentation, and reporting.
Adds helpful buttons and shortcuts directly into the FireMon interface where you need them most.
All operations run locally in your browser. No external servers, no data transmission, complete privacy.
Stay up to date with the latest features and improvements
chrome.storage.managed), so policy-deployed installs work without anyone opening the first-run setup page. Policy values take precedence over local settings.ENTERPRISE-DEPLOYMENT.md guide documents the exact Intune policy values for administrators.NAME ~ '<pattern>' filter plus a multi-select of device groups, and multiple mappings can be queued in a single run. "Preview changes" shows per-pattern matched / already-complete / to-change counts and an expandable list of every planned device→group(s) addition before any write. "Apply" then POSTs each missing membership and reports devices changed, memberships added, and failures with the failing device/group pairs in a collapsible.vendorIdentifier — the UUID emitted by the device pack, consistent between a management-station rule and its rendered child-device rules — eliminating the false matches the previous attribute-based heuristic could produce.vendorIdentifier — useful for device packs (often physical firewalls) that don't emit one. Default off so vendor-id matching stays strict.console.log/debug/info/warn/error. Defaults to "warn" to silence the previous unconditional console chatter; live-updates without an extension reload./customproperty/domain/ endpoint instead of /customproperty/rule/domain/, which returned CustomPropertyDefinitionDTO objects that can have a null ruleCustomPropertyDefinitionId. Switched to the rule-specific endpoint so prop.id is always the correct rule-level definition ID.BOOLEAN, INTEGER, and USER types were missing from VALUE_TYPE_LOOKUP in csv-processor.js, so the value-key lookup returned undefined and the field was silently skipped. Also fixed processValue returning the raw CSV string 'true'/'false' for booleans instead of a JSON boolean, and sync-ruledoc.js using the wrong field name (boolval instead of booleanval) plus Boolean('false') === true (any non-empty string is truthy in JS).sessionStorage with a 5-minute TTL so page reloads after assignment no longer lose the "recently assigned" flag. Also fixed a secondary case where the API omits the assignee field entirely on unclaimed active tasks, which previously caused the UI to be silently suppressed.data-pp-handled marker so already-wired checkboxes are skipped without touching the DOM.workflowPacketTasks[0] (the oldest/first task, typically already completed) as the target task ID. Now correctly selects the first non-completed task.Content-Type: text/plain on the first attempt as required by the API, eliminating the multi-format retry chain.{"Block Facebook"} → Block Facebook)pull-left classmargin-left: 3px, margin-right: 8px) for better visual alignment/devicegroup/{id}/device)Roll out NSPM Power Tools to every workstation with Microsoft Intune. Push the FireMon URL centrally so users never see the first-run setup page — no separate enterprise build required.
Deploy the standard store build through Intune. Chrome and Edge have different store IDs — use the correct one for each browser.
Edge — Settings Catalog → Microsoft Edge → Extensions → "Control which extensions are installed silently"The URL is read from Chromium managed storage. Deliver it with an Intune PowerShell platform script — run in the SYSTEM context — that writes the policy registry keys. Set your FireMon URL (no trailing slash) and remove the browser block you don't use.
The extension requests only optional host permissions, so the public listing carries no broad-access warning. On a FireMon tab, users click the NSPM Power Tools toolbar icon to activate the tools for that tab.
Want automatic activation? Each user can grant the FireMon site persistent access once (right-click the icon → This can read and change site data → On your FireMon host). This is per-user and cannot be pushed by policy.
Values pushed by Intune appear locked in the extension's options with an "organization managed" banner, and onboarding auto-completes — no blank setup screen. Verify a deployment at edge://policy or chrome://policy. The full administrator guide (ENTERPRISE-DEPLOYMENT.md) ships inside the extension package.
BY USING FIREMON POWER TOOLS, YOU ACKNOWLEDGE AND AGREE TO THE FOLLOWING:
No Warranty: This browser extension is provided "AS IS" and "AS AVAILABLE" without any warranties of any kind, either express or implied, including but not limited to warranties of merchantability, fitness for a particular purpose, or non-infringement. The developers make no warranty that the extension will be error-free, uninterrupted, secure, or meet your requirements.
Use at Your Own Risk: The use of bulk operations, automation features, and administrative functions can have significant and potentially irreversible effects on your FireMon Security Manager environment. You are solely responsible for understanding the impact of any actions you take using this extension. Always test in a non-production environment first.
Limitation of Liability: In no event shall the developers, contributors, or distributors of NSPM Power Tools be liable for any direct, indirect, incidental, special, consequential, or exemplary damages, including but not limited to loss of data, system downtime, business interruption, or any other commercial damages or losses arising out of or in connection with your use or inability to use this extension, even if advised of the possibility of such damages.
User Responsibility: You are entirely responsible for:
No Official Affiliation: NSPM Power Tools is an independent, community-developed extension and is not officially affiliated with, endorsed by, or supported by FireMon, LLC. This is a third-party tool provided as a convenience to FireMon administrators.
Indemnification: You agree to indemnify, defend, and hold harmless the developers and contributors of NSPM Power Tools from and against any and all claims, damages, losses, liabilities, costs, and expenses (including reasonable attorneys' fees) arising out of or relating to your use of this extension.