Skip to main content

Policy set

Description

"A PolicySet is a container that can hold other Policies or PolicySets, as well as references to policies found in remote locations".

Every PolicySet contains one Target. Target contains the subjects, resources, actions and environments where the policy set will be applied. A target can contain more than one subject, environment, resource or action or none of them.

Policy Set can be exported to an XML file by clicking on Export button. The file will contain the Policy Set Target and all the elements included in it, like other PolicySets, Policies or References.

It is possible to create a new version for a PolicySet by clicking on 'Add new version'. That will copy all PolicySet elements on the tree with the following version number.

Related objects

Custom attributes

Policy set

  • Identifier: identify the policy set.
  • Version: version of the policy set.
  • Description: brief description of the policy set.
  • Policy Combining Algorithm: determines how the different Policies in the PolicySet will be applied.
    • Deny overrides.
    • Permit overrides.
    • First applicable.
    • Only one applicable.
    • Ordered deny overrides.
    • Ordered permit overrides.

For more information about the policy combining algorithm you can visit the normative: http://docs.oasis-open.org/xacml/3.0/xacml-3.0-core-spec-os-en.html#_Toc325047078

Target

Target contains the subjects, resources, actions, and environments where the policy set will be applied. A target can contains more than one subject, environment, resource or action or none of them.

Visit the Target page for more information

Obligations

 

obligation or advice expressions

 

Actions

Add new

Allows you to add a new policy set. You can choose that option on the hamburger menu or clicking the add button (+).

To add a new role it will be mandatory to fill in the required fields

Import

Allows you to add a new policy set form a XML file. The file will contain the Policy Set Target and all the elements included in it, like other PolicySets, Policies or References.

Export

Allows you to export a XML file that contain the policy set.

Apply changes

Allows you to save the data of a new policy set or to update the data of a specific policy set. To save the data it will be mandatory to fill in the required fields

Delete

Allows you to delete a policy set. You can choose that option on the trash icon.

To perform that action, Soffid will ask you for confirmation, you could confirm or cancel the operation.

Undo

Allows you to quit without applying any changes.

Test policy set

&&TODO&&

 

https://www.oasis-open.org/committees/download.php/2713/Brief_Introduction_to_XACML.html

 

Back to top