Ogledujete si pomoč za različico :
- 6.4
- 6.3
- 6.2
- Starejše različice
Policy sets are used to group policies that have a common business purpose. Policy sets can be made available to a subset of users in the system.
Each policy set has at least one associated policy set coordinator. The policy set coordinator is an administrator or a user who has additional permissions. The policy set coordinator is typically a specialist in the organization who can best author the policies in a given policy set.
Policy set coordinators can perform these tasks:
Create new policies
Edit and delete any policy in the policy set
Edit policy set settings
Add and remove coordinators for the policy set
View policy and document events for any policy or document within the policy set
Revoke access to documents
Switch policies for the document
Policy sets are created and deleted in the document security administrator interface by super users and policy set coordinators who have permission to do so.
When you delete a policy set, policies that were part of the set cannot be applied to new documents. However, you can view the policy information in both the administration console and the end user web pages for policies that are still in use. You can view the policy information from the document detail page for any document protected by the policy. Policies still in use can be edited.
The super user or policy set coordinator adds domains that are created in User Management to the visible user and group for each policy set. This list is visible to the policy set coordinator and is used to put limits on which domains the policy set coordinator can browse when choosing users to add to policies.
When you create policy sets, you assign users the role of document publisher. The document publisher is the user who protects the document with a policy. This user is, by default, always included on a policy with full access rights, including revoke and policy switching capabilities. However, administrators can change the document publisher’s access rights for shared policies. For example, the administrator can disable the document publisher’s right to revoke document access or switch the policy. If an administrator switches the policy attached to the document, the Publisher name will be updated to the name of the owner of the policy last applied to the document.
Upon installation of document security, a default policy set is created called Global Policy Set. This policy set is managed by the administrator who installed the software or the policy set coordinator who is designated for this policy set.
Global Policy Set is the only default policy set that is created upon installation. You can create additional policy sets and add policies, users, policy set coordinators, and document publishers. After creating a policy set, you can create policies within the set.
During policy set creation, you can use the Back button to return to the previous screen and the Save button to save your policy set at any time.
-
In the Name box, type a name for the policy set, optionally type a Description, and then click Next. The name cannot contain a colon (:).
Opomba:
You can create a policy set name that contains extended characters; however, when a comparison is made between two strings, accented and non-accented characters such as "e" and "é" are considered to be the same. When someone creates a policy set, a comparison is made to check whether a policy set with the same name already exists. The comparison cannot distinguish between names that are the same except for accented characters. It is assumed that the policy set is already added to the database and the new one is not added.
-
(Optional) To add a policy set coordinator, click Add Users and Groups on the Add Policy Set Coordinator(s) (Step 3 of 4) page and perform these tasks:
In the Find box, type the name or email address.
In the Using list, select the appropriate option.
In the Type list, select User and, in the In list, select a domain to search.
In the Display list, select the number of results to display per page, and then click Find.
Select the check box for the user or group to add and click Next.
Select the policy set coordinator permissions and click Add. The following permissions can be set:
View events
Manage documents (revoke and reinstate access to documents, and switch policies on documents)
Manage policies (create, edit, and delete policies)
Managing Document Publishers (add and remove Document Publishers)
Delegate (add and remove Policy Set Coordinators)
-
In the Find box, type the name or email address.
In the Using list, select the appropriate option.
In the Type list, select User and, in the In list, select a domain to search.
In the Display list, select the number of results to display per page, and then click Find.
Select the check boxes for the users and groups to add, click Add, and then click OK.
You can now add policies to your policy set. (See Creating and editing policies.)
-
Detail: Edit the policy set name and description.
Policies: Create, enable, edit, and delete policies within the policy set.
Visible Users and Groups: Add and remove visible users and groups who can be included in a policy.
Policy Set Coordinators: Add, remove, and change permissions for coordinators.
Document Publishers: Add and remove users who can publish documents by using the policies in the set.
-
To search for a policy, select Policy ID or Policy Name, type the corresponding value, select the number of items to display, and click Find.
For details about creating a new policy, see Creating and editing policies.
When you delete a policy set, policies that were part of the set cannot be applied to new documents. However, you can view the policy information in both the administration console and the end-user web pages for policies that are still in use. You can view the policy information from the document detail page for any document protected by the policy. Policies still in use can be edited.