Previous Topic: Create a PolicyNext Topic: Create a CA SiteMinder Application to Protect SharePoint Resources that CA DataMinder also Protects

Agent for SharePoint GuideHow to Configure your CA SiteMinder Policy ServerCreate an Authentication Scheme for the Agent for SharePointCreate a PolicyAdd Users to a Policy

Add Users to a Policy

You can add individual users, user groups, or both to a policy and can create a policy binding between the added users and the policy. When a user tries to access a protected resource, the policy verifies that the user is part of its policy binding. Then the policy fires the rules included in the policy to see if the user is allowed to access the resource.

Follow these steps:

  1. Click Policies, Domains.

    The Domain pane appears.

  2. Click Policy, Modify Policy.

    The Modify Policy page appears.

  3. Select the policy to change from the search results and click Select.

    The Modify Policy:Name page appears.

  4. Click the Users tab on the Policy pane.

    The User Directories pane opens and contains group boxes for each user directory that is associated with the policy domain.

  5. Add users or groups from the user directory to the policy.

    In each user directory section, you can select Add Members, Add Entry, Add All. Depending on which method you use to add users to the policy, a dialog opens to let you add users.

    Note: If you select Add Members, the User/Groups pane opens. Individual users are not displayed automatically. Use the search utility to find a specific user within one of the directories.

    You can edit or delete a user or group by clicking the right arrow (>) or minus sign (-), respectively.

  6. Select individual users, user groups, or both using whatever method and click OK.

    The User Directories pane reopens and lists the new users for the policy on the section of the user directory. The task of binding users to the policy is complete.

Add Rules to a Policy

Rules indicate the specific resources included in a policy and whether to allow or deny access to the resources when the rule fires. Responses indicate the actions you want to occur when the rule fires.

Note: Add at least one rule or rule group to a policy.

Follow these steps:

  1. Navigate to Policy, Rules.

    The Rules dialog opens.

  2. Click Add Rule.

    The Available Rules pane opens.

  3. Select the individual rules, rule groups, or both that you want to add to the policy, and click OK.

    The Rules section lists the added rules and groups.

  4. (Optional) Associate the rule with a response or response group.

    Note: To remove a rule or rule group from a policy, click the minus sign (-) to the right of the rule on the Rules section. To create a rule, click New Rule on the Available Rules pane.