Privilege Management Console Policies

The Policies page allows you to see and interact with the policies being deployed by PMC.

The policies page allows you to interact with the policies being deployed.

Upload a File in PMC to Create Policy

You can upload an XML policy file in PMC when you first create the policy, or make edits to the policy at a later time.

Upload XML file for a new policy:

Select Import Policy to upload an XML policy file.

  1. Select Policies from the sidebar menu.
  2. Click Create Policy at the top of the Policies grid.
  3. Select the desired policy template and enter policy details.
  4. Click Create Policy.
  5. On the Policies Editor, select Utilities > Import Policy.
  6. Choose either Merge Policy or Overwrite Policy and click the box to import your XML policy.
  7. Click Upload File.

Upload XML file for an existing policy:

  1. Select Policies from the sidebar menu.
  2. Click the vertical ellipsis icon beside the policy you want to edit.
  3. From the dropdown menu, click Edit.
  4. On the Policies Editor, select Utilities > Import Policy.
  5. Choose either Merge Policy or Overwrite Policy and click the box to import your XML policy.
  6. Click Upload File.

For more information, please see Upload an XML File to Create Policy.

Upload Policy Revision

You can upload a new revision of an existing policy to PMC. Policies downloaded from PMC, modified and then reuploaded are recognized as a new revision based on a unique identifier in the XML.

Upload new revision of an existing policy:

  1. Select Policies from the sidebar menu.
  2. Click the vertical ellipsis icon beside the policy you want to edit.
  3. From the dropdown menu, select Revision History.
  4. Click Upload Revision. Browse to the XML file and click Open. The XML file is uploaded to the portal.
  5. The new revision is uploaded, provided the XML validation passes. If the XML policy does not pass validation, the row is highlighted in red and the policy is not uploaded.

Each time the same policy is checked in from the MMC, the revision of the policy is incremented. New revisions of the same policy need to be manually assigned to the group; this is not done automatically.

For more information, please see Assign a Policy to a Group.

View Policy Details

For a single policy, you can view additional details.

  1. Select Policies from the sidebar menu.
  2. Click the vertical ellipsis beside the appropriate policy and select Policy Details from the dropdown menu.
  3. The Detail page allows you to see additional information for the policy and what policy is currently applied to it, if any. You can click Edit to change these details.

Download Policy

You can download a policy from PMC in XML format if required.

To download a policy as an XML file:

  1. Select Policies from the sidebar menu.
  2. Click the vertical ellipsis beside the policy you want to edit.
  3. From the dropdown menu, select Download Latest Revision.

If you would like to download a previous revision version, select Revision History from the dropdown menu.

Edit Properties of Policy

You can edit the details for a single policy.

  1. Select Policies from the sidebar menu.
  2. Click the vertical ellipsis beside the appropriate policy and select Edit from the dropdown menu.
  3. Change the Policy Name, and Description as required, and then click Save.

Assign a Policy to a Group

  1. Select Groups from the sidebar menu.
  2. Click the vertical ellipses icon on the appropriate group's row to expand more options and select Edit Policy Assignment.
  3. Select the policy you want to assign from the dropdown and the associated revision. By default, the revision is the most recent.

You should see a green dialogue box appear in the upper corner of the console to confirm that the policy was applied successfully.

For details on how you can control the deployment of your policy, please see Manage Policy Deployment Settings.

Discard Policy Draft and Undo Check Out in MMC Snap-in

If a policy is checked out using the Privilege Management MMC snap-in, you can force PMC to discard the changes and undo the checkout. You must be an Administrator or Policy Administrator.

To discard draft and undo checkout of a policy:

  1. Select Policies from the sidebar menu.
  2. Click the vertical ellipsis beside the appropriate policy and select Revert & Discard Changes from the dropdown menu.
  3. Review the warning and click Revert & Discard to revert the policy changes; otherwise, click Cancel.

Delete a Policy

You can only delete policies if they're not assigned to any group.

To delete a policy:

  1. Select Policies from the sidebar menu.
  2. Click the vertical ellipsis beside the appropriate policy and select Policy Details from the dropdown menu.
  3. Click Delete at the top of the grid.
  4. You are prompted to check that you do want to perform this action. Click Yes to confirm and discard the policy; otherwise, click No.