Previous Topic: Securing Applications Using EPMNext Topic: Administrative Rights to Create Application Security Policies

Policy Server GuidesPolicy Server Configuration GuideEnterprise Policy ManagementHow to Create Application Security Policies

How to Create Application Security Policies

To protect applications in your organization, you create application security policies. These policies define the resources you want protected and specify who is allowed access to the protected application.

To create application security policies, use the following process:

  1. Define an application that you want to protect.
  2. Create a new user directory or associate an existing user directory with the application.
  3. Specify the resources (such as the parts of an application or web pages) that you want to protect.
  4. Create application roles that identify the users that should have access to the protected resources. Application roles are defined by expressions that search the user directories for users that meet the membership criteria of the application role.
  5. (Optional) Configure responses to customize an application.
  6. (Optional) Specify custom attributes to provide metadata about the application.
  7. Repeat Steps 4 and 5 until all your resources and roles are defined.
  8. Create policies by associating the application roles with the resources.

A series of use cases show the detailed configuration steps for protecting applications.

Note: You may want to have the Administrative UI open to follow along with the use cases.