Previous Topic: Create a Scoping PolicyNext Topic: Test a New Policy

Administration GuideCustom Roles and PoliciesConfiguring Custom User Roles and Access PoliciesCreate a Policy Based on an Existing Policy

Create a Policy Based on an Existing Policy

You can create a new access policy by copying an existing access policy and modifying the copy. This procedure can save you the time it takes to manually duplicate the specifications of an existing policy that requires only minor modifications to satisfy your current requirements.

Only Administrators can create, edit, delete, or view access policies.

To create a policy based on an existing policy

  1. Click the Administration tab and the User and Access Management subtab.
  2. Click Access Policies.
  3. Select either CALM or Scoping Policies, depending on the type of policy you want to use as a template.
  4. Click the name link to open the policy to copy.
  5. Click Save As.

    The Explorer user Prompt dialog appears.

  6. Enter the name for the new policy to be based on the open policy and click OK.
  7. Make the needed modifications.

    For example, replace the copied Identity with the name of the role (user-defined application user group) to which this policy applies. Consider modifying the actions permitted on the copied resources. Consider clicking Filters and specifying an additional filter for the new role.

  8. Click Save, and then click Close.
  9. Verify the new policy definition.
    1. Re-select the policy type to display the view of all policies.
    2. Compare the new policy with the original policy and verify that all planned changes are reflected in the new policy.
    3. Click Close.
  10. Test the policy.

More information:

Step 5: Create a Policy Based on Analyst Report View-Edit Policy