A policy set is a group of policies that are
used together to protect a resource.
About this task
You can view, create, modify, or delete a policy set.
Procedure
- Log in to the local management interface.
- Click .
- Under Policy, click Access
Control.
- Perform one or more of the following actions:
- Create a policy set
- Click .
- Type a name for the policy set in the Name field.
Note: The
name must begin with an alphabetic character. Do not use control characters,
leading and trailing blanks, and the following special characters
~ ! @ # $ % ^ & * ( ) + | ` = \ ; : " ' < > ? , [ ] { }
/ anywhere in the name.
- Optionally, type a description in the Description field.
- In the Policy Combining Algorithm dialog, set the combined action
for the policy set by choosing one of the following options:
- Deny access if any policy in the set returns deny
- Choose this option if you want the policy set to deny access if
any policy in the set returns a response of deny.
- Permit access if any policy in the set returns permit
- Choose this option if you want the policy set to permit access
if any policy in the set returns a response of permit.
- Return the decision of the first policy in the set that returns
either permit or deny
- The policies are evaluated in the order they are listed in the
set. Choose this option if you want to use the first policy that returns
a response of permit or deny as the result of the policy set.
- Click Save.
- Click OK.
- Next, add one or more policies to the policy set.
- Add one or more policies to a policy set
- Click All Policies.
- Select a policy or press Ctrl and select multiple policies to
add to the policy set.
- Click Add To.
- Select a policy set.
- Click OK.
- Change the order of the policies in a set
- If you selected Return the decision of the first policy
in the set that returns either permit or deny, set the
order in which you want the policies to run:
- Select a policy set.
- Select a policy.
- Click or to change the position
of the policy in the set.
- Modify a policy set
- Select a policy set in the list of policy sets.
- Click .
- Change to the name, description, or policy combining algorithm.
Note: The
name must begin with an alphabetic character. Do not use control characters,
leading and trailing blanks, and the following special characters
~ ! @ # $ % ^ & * ( ) + | ` = \ ; : " ' < > ? , [ ] { }
/ anywhere in the name.
- Click Save.
- Remove one or more policies from a policy set
- Select a policy set in the list of policy sets.
- Select a policy or press Ctrl and select multiple policies to
remove from the policy set.
- Click Remove. Confirm the removal.
Note: When
you remove a policy from a set, the policy is not deleted from the
policy list. To delete a policy from the list, see
Managing access control policies.
- Click OK. The policy is removed.
- Delete a policy set
- Select a policy set in the list of policy sets.
- Click . Confirm the deletion.
- Click OK. The policy set is deleted.