Create new zones using saved device queries as zone rules to replace legacy zones.

Create new zones, one at a time, starting with the zones that you intend to assign the least restrictive device policy. Each time you create a zone with a device policy assignment, the policy assignment for devices in the zone are overwritten. Create the zone with the most restrictive device policy last to make sure that the highest-ranked devices receive the most restrictive policy as intended.

1. In the console, go to the Zones page.
2. Click Add New Zone.
3. In the Zone Name field, type a name or use the previous name with “V2” as a suffix.
4. In the Policy field:
   1. If the zone is not used for device policy assignment, select None.
   2. If the zone is used for device policy assignment, select the appropriate device policy. Start with the least restrictive policy and work towards creating a zone for devices that require the most restrictive policy.
5. Click Save to create the zone.
6. Click the zone that you created.
7. In the Zone Rule section, click Create Rule.
8. Select the saved query that you want to use for this zone and validate the query string that is displayed.
9. If you want to automatically remove a device from this zone when a device no longer meets the rule conditions, and it makes sense for devices in this zone, select the Remove devices automatically from this zone option.
10. Click Save.

• If needed, assign this zone to applicable areas like zone-based update policies, or Zone Manager or User roles for asset management.
• Delete the legacy zone that you replaced.