Previous Topic: Policy Considerations for OnAccessReject Rules

Next Topic: Enable and Disable Global Rules

Create a Global Rule for Authorization Events

You create a global rule for authentication events to control actions that occur when users authenticate to gain access to a resource.

To create a global rule

  1. Click Policies, Global.
  2. Click Global Rule, Create Global Rule.

    The Create Global Rule pane appears.

    Note: Click Help for descriptions of settings and controls, including their respective requirements and limits.

  3. Enter the global rule name.
  4. Specify agent and resource settings in the Realm and Resource group box.

    Note: If you specify an Agent Group and have also configured domain-specific rules associated with the same resource, you may adversely affect system performance by effectively duplicating processing steps. Consider domain-specific rules that may duplicate the responses generated by global rules. In such cases, only one response is returned to the Agent because the Policy Server automatically deletes duplicate responses before passing information back to the requesting Agent.

  5. Select Authentication events from the Action group box.
  6. Select an OnAuth event from the Action List.
  7. Click Submit.

    The global rule is saved.

More information:

Responses and Response Groups

Resource Matching and Regular Expressions


Copyright © 2010 CA. All rights reserved. Email CA about this topic