Assign rules to policies

Rules have to be assigned to policies to govern the actions that can be taken on the protected resources in the RDSSecurity context. If you do not assign a rule to a policy, then no one has access to the resource in the rule.

 

To assign rules to policies:

  1. On the Register Security Context page, select RDSSecurity from the table. The Edit Security Context page appears.

  2. Scroll to the bottom of the page and click Policies. The Resource Policies for Security Context page appears.

  3. Select the Mars policy from the Policy table. The Edit Security Policy page displays.

  4. Click Rules. The Resource Rules for Policy "Mars" page appears; notice that no rules yet exist for the policy.

  5. Click Add/Remove. The Add/Remove Rules for Policy page displays. From the Available Rules list, select the following rules for Mars by clicking the rule names while holding down the Control key:
    Mars_dsn
    Mars_r_directory
    Mars_w_directory
    Mars_r_files
    Mars_w_files
    C_r_file
    C_w_file
    C_development_r_file
    C_development_w_file

  6. Click Add. The Mars policy has access rights to the mars_dsn resource and all files in the c:\development\mars directory and subdirectories.

  7. Repeat steps 2 through 6 to add the following rules for Venus:
    Venus_dsn
    Venus_r_directory
    Venus_w_directory
    Venus_r_files
    Venus_w_files
    C_r_file
    C_w_file
    C_development_r_file
    C_development_w_file

    The Venus policy has access rights to the venus_dsn resource and all files in the c:\development\venus directory and subdirectories.
     

The policies have access only to the resources explicitly defined in their rules. However, users still do not have access to the resources. Proceed to Assign users to policies to continue with this example scenario.

Related topics