|
|
|
This function deletes the specified policy or policy version.
Note: You cannot delete a policy or policy version that is assigned to a host or host group, deployed on a host or host group, that has a status of Undeployed with failures, or that has a status on the DMS. Ensure that you undeploy or unassign a policy or policy version from all hosts and host groups before you delete the policy or policy version. In addition, you cannot delete a policy that is a prerequisite for another policy. Remove any dependencies on a policy before you delete it.
This function has the following format:
policydeploy -delete name[#xx] [-dms list]
Deletes the specified policy or policy version.
(Optional) Specifies a comma-separated list of DMS nodes to use. When you deploy or undeploy a policy, these are the DMS nodes to which the action is reported. When you store a policy, these are the DMS nodes where the policy is stored.
If you do not specify DMS nodes with this option, the utility uses the list of DMS nodes specified in the local CA Access Control database. To specify a list of DMS nodes in the database, you need to issue the following selang command after you create a new DMS using dmsmgr:
so dms+(new_dms_name)
Note: You need to issue the same command if you did not specify the DMS node during installation, or if you want to replace or add the registered DMS on the endpoint. However, when you specify to create an advanced policy management server during installation, the DMS is added to the database and you do not need to manually run the above command.
Example: Delete an Unassigned IIS 5 Protection Policy
The following example shows you how to delete an unassigned IIS 5 policy from the DMS. In this example, policy IIS5 is not assigned to any hosts or host groups and is is stored on the crDMS@cr_host.company.com DMS node.
To delete the IIS 5 protection policy, open a command prompt window and run the policydeploy utility:
policydeploy -delete IIS5
Policy IIS5 is deleted from the crDMS@cr_host.company.com DMS node.
Example: Delete an IIS 5 Protection Policy Version
The following example shows you how to delete the unassigned policy version IIS5#05 from the DMS. In this example, policy version IIS5#05 is not assigned to any hosts or host groups and is stored on the crDMS@cr_host.company.com DMS node.
To delete the IIS 5 protection policy version, open a command prompt window and run the policydeploy utility:
policydeploy -delete IIS5#05
Policy version IIS5#05 is deleted from the crDMS@cr_host.company.com DMS node.
| Copyright © 2012 CA. All rights reserved. | Tell Technical Publications how we can improve this information |