An access policy is a rule that grants or denies an identity (user or user group) access rights to an application resource or a global resource. CA User Activity Reporting Module determines whether policies apply to the particular user by matching identities, resources, resource classes, and evaluating the filters. That is, a policy states the actions that are granted or denied to specific identities on specific resources. Policies that deny access to a given resource have precedence over policies that grant access to the same resource.
CA User Activity Reporting Module supports the following types of access policies:
CA User Activity Reporting Module is installed with predefined CALM access policies and scoping policies for three CA User Activity Reporting Module application user groups: Administrator, Analyst, and Auditor. These policies are sufficient if you plan to assign only the out-of-the-box application user groups to users performing the various roles.
Important! We recommend that you take a backup of the predefined policies that are provided with CA User Activity Reporting Module. If a CALM Access policy is inadvertently deleted, users cannot access CA User Activity Reporting Module until that policy is restored from a backup.
|
Copyright © 2013 CA.
All rights reserved.
|
|