Configure a Network Zone Policy in CA Access Control Enterprise Management

Product Guide › Administering CA Access Control for Virtual Environments › Network Segregation › Configure a Network Zone Policy in CA Access Control Enterprise Management

Configure a Network Zone Policy in CA Access Control Enterprise Management

The network segregation rules that you define specify the network zone and apply to security groups. When applied, members can communicate within the zone only. You can define security groups and assign members to the groups or use the automatically created security groups.

Note: Define the network services to use before you configure the network zone policy.

Follow these steps:

Go to World View, Security Groups, Security Groups Management.
The Security Groups Management page appears displaying the security groups on the VMware vCenter and the CA Access Control Server details.
Select a security group.
CA Access Control Enterprise Management displays the security group details and members.
From the Actions menu, select Add Network Zone Policy.
The manage network rules window opens.
Complete the following:

Description

Specifies a description for the network zone policy

Service

Defines the network services to assign to the network zone policy. Click Add to search for the network service to assign.

Directional

Defines the network traffic direction that the network service is permitted to use.

Options: Inbound, Outbound, Bidirectional
Click Submit.
CA Access Control Enterprise Management submits the network segregation rule. A confirmation message appears informing you that the task successfully completed.

You successfully applied the network zone policy to the security group.

Tell Technical Publications how we can improve this information