policydeploy -delete Function

Reference Guide › Utilities › policydeploy Utility—Manage Enterprise Policy Deployment › policydeploy -delete Function—Delete a Policy

policydeploy -delete Function—Delete a Policy

This function deletes the specified policy or policy version.

Note: Before you delete a policy, remove any policy dependencies. Before you delete a policy or policy version, undeploy or unassign the policy or policy version from all hosts and host groups.

You cannot delete a policy or policy version if:

It is a prerequisite for another policy.
It is assigned to a host or host group.
It is deployed on a host or host group.
It has a status of Undeployed with failures.
It has a status on the DMS.

This function has the following format:

policydeploy -delete name[#xx] [-dms list]

-delete name[#xx]

Deletes the specified policy or policy version.

-dms list

(Optional) Specifies a comma-separated list of DMS nodes to use. When you deploy or undeploy a policy, these are the DMS nodes to which the action is reported. When you store a policy, these are the DMS nodes where the policy is stored.

If you do not specify DMS nodes with this option, the utility uses the list of DMS nodes specified in the local CA ControlMinder database. To specify a list of DMS nodes in the database, you need to issue the following selang command after you create a new DMS using dmsmgr:

so dms+(new_dms_name)

Note: You need to issue the same command if you did not specify the DMS node during installation, or if you want to replace or add the registered DMS on the endpoint. However, when you specify to create an advanced policy management server during installation, the DMS is added to the database and you do not need to manually run the above command.

Example: Delete an Unassigned IIS 5 Protection Policy

The following example shows you how to delete an unassigned IIS 5 policy from the DMS. In this example, policy IIS5 is not assigned to any hosts or host groups and is stored on the crDMS@cr_host.company.com DMS node.

To delete the IIS 5 protection policy, open a command prompt window and run the policydeploy utility:

policydeploy -delete IIS5

Policy IIS5 is deleted from the crDMS@cr_host.company.com DMS node.

Example: Delete an IIS 5 Protection Policy Version

The following example shows you how to delete the unassigned policy version IIS5#05 from the DMS. In this example, policy version IIS5#05 is not assigned to any hosts or host groups and is stored on the crDMS@cr_host.company.com DMS node.

To delete the IIS 5 protection policy version, open a command prompt window and run the policydeploy utility:

policydeploy -delete IIS5#05

Policy version IIS5#05 is deleted from the crDMS@cr_host.company.com DMS node.