Modifying an access policy group, Deleting an access policy group – HP Identity Driven Manager Software Series User Manual

Using Identity Driven Manager
Defining Access Policy Groups

When the user is authenticated, IDM checks the Access Policies in the
order listed. If it is Saturday or Sunday, the user’s access is denied. On any
other day, the user is allowed on the network. If the order were reversed,
IDM would never read the second rule because the first rule would provide
a match every day of the week.

8. Click OK to save the Access Policy Group and close the window.

IDM will verify that the rules in the APG are valid. If a rule includes a
defined VLAN (from the Access Profile) and the VLAN does not exist on
the network or devices for the location(s), an error message is returned
and you must fix the problem before the APG can be saved.

Click Cancel to close the window without saving the Access Policy Group
configuration.

9. The new Access Policy Group is listed in the Access Policy Groups tab

Modifying an Access Policy Group

1. Click the Access Policy Group node in the IDM tree to display the Access

Policy Groups tab.

2. Click on an Access Policy Group Name to select it.

3. Click the "Modify Policy Group" icon in the toolbar to display the "Modify

Access Policy Group" window.

4. Modify the Rules as needed by selecting different options from the pull-

down menus for each field. (see page 3-16 for field definitions).

5. Click

Ok

to save your changes and close the window.

Click Cancel to close the window without saving the Access Policy Group
changes.

Deleting an Access Policy Group

1. Click the Access Policy Group node in the IDM tree to display the Access

Policy Groups tab.

2. Click on an Access Policy Group Name to select it.

3. Click the "Delete Policy Group" icon in the toolbar to delete the Access

Policy Group.

3-18