A security group is a collection of assets or grouping objects, such as virtual machines, organization virtual data center networks, or security tags.
Security groups can have dynamic membership criteria based on security tags, virtual machine name, virtual machine guest OS name, or virtual machine guest host name. For example, all virtual machines that have the security tag "web" will be automatically added to a specific security group destined for Web servers.
After creating security tags and groups are setup and ready to use you can assign the tag to a security group, and write a firewall rule against it, applying different security settings depending on whether the virtual machine is running a database server or an email server. Later, if you change the functionality of the virtual machine, you can remove the virtual machine from the security tag rather than editing the firewall rule. Apply this dynamic security feature to protect and manage your environment in a much more efficient way than constantly and manually updating network rules.
You can create user-defined security groups.
If you want to use security tags with security groups, the tags should be created before creating the security group. For information about creating security tags, see Security Tags
The security group can now be used in rules, such as firewall rules.
You can edit user-defined security groups.
You must have created user-defined security groups.
You can delete a user-defined security group.
The security group is deleted.