Contents    

To Add Rules

Rules define the resource, actions and action values of the policy.

  1. From the Identity Management interface, select Policies from the View.
  2. The policies that were created for that organization are displayed.

  3. Choose the policy you wish to modify and click the Properties arrow. The Edit Policy window is opened in the Data frame.
  4. By default, the General view is displayed.

  5. To define rules for the policy, select Rules from the View menu and click New.
  6. If more than one service exists, they will be listed in the Data frame. Choose the service for which you wish to create a policy and click Next. The New Rule window is displayed.

  7. Define the resource, actions and action values in the Rules fields. The fields are:
  8. Type. Displays the service for the policy to be created. The default is URL Policy Agent.

    Rule Name. Enter the name of the rule.

    Resource Name. Enter the name of a resource. For example:

    http://www.example.com

    Currently, Policy Agents only support http:// and https:// resources and do not support IP addresses in place of the hostname.

    Wildcards are supported for resource names, port number and protocol. For example:

    http*://*:*/*.html

    For the URL Policy Agent service, if a port number is not entered, the default port number is 80 for http://, and 443 for https://.

    To allow the management of resource for all servers installed on a specific machine, you can define the resource as http://host*:*. Additionally, you can define the following resource to grant an administrator to a specific organization authority for all of the services in that organization:

  9. http://*.subdomain.domain.topleveldomain
  10. Select Actions. For the URL Policy Agent Service, you can select either or both of the following default actions:

    • GET
    • POST
    • Select Action Values. For the URL Policy Agent Service, you can choose one of the following action values:

    • Allow lets you access the resource matching the resource defined in the rule.
    • Deny denies access to the resource matching the resource defined in the rule.
  1. Click Finish to save the rule. This only saves the configuration in memory. Follow step 8 to complete the process.
  2. Repeat steps 1 through 5 to create additional rules.
  3. All of the rules created for that policy are displayed in the table in the Rules view. Click Save to add the rules to the policy.
  4. To remove a rule from a policy, select the rule and click Remove.

    You can edit any rule definition by clicking on the Edit link next to the rule name.


Contents