Policy Server Guides › Policy Server Configuration Guide › Rules › Configure a Rule for Web Agent Actions

Configure a Rule for Web Agent Actions

You can create a rule that fires in response to specified Web Agent actions and that allows or denies access to the resource that the rule is designed to protect.

Note: You can also create a rule for the CA SOA Security Manager XML Agent. When creating a rule for this Agent type, two additional rule actions are available: ProcessSOAP and ProcessXML. For more information, see the CA SOA Security Manager Policy Configuration Guide.

To create a rule

1. Click Policies, Domains.
2. Click Rule, Create Rule.

   The Create Rule: Select Domain pane opens.

3. Select a domain from the Domain list, and click Next.

   The Create Rule: Select Realm pane opens.

4. Select the realm that includes the resources that you want the rule to protect, and click Next.

   The Create Rule: Define Rule pane opens.

   Note: If a realm does not exist for the resources that you want to protect, a rule cannot be created to protect those resources.

5. Type the name and a description of the rule in the fields on the General group box.

   Note: Click Help for descriptions of settings and controls, including their respective requirements and limits.

6. Type the resource that you want the rule to protect in the Resource field.

   The Effective Resource updates to include the resource.

7. Specify whether the rules should allow or deny access to the protected resource in the Allow/Deny and Enable/Disable group box.
8. Select the Web Agent actions radio button on the Action group box.

   The Action List is populated with HTTP actions.

9. Select one or more HTTP actions from the Action list.
10. (Optional) Specify time restrictions, an active rule, or both on the Advanced group box.
11. Click Finish.

    The Create Rule task is submitted for processing.

More information:

Regular Expressions for Resource Matching

Advanced Rule Options