How do I assign Access Policies to a cipherscale Group?

You assign an Access Policy to a Group by including that Group as a Source value for the Policy. If a User belongs to a Group included in the Source field of the Policy, then that access policy also automatically applies to the User.

Note that the priority of the Access Rule will determine the outcome. The rule that is matched first is the one that is enforced. For example, If Bob is a user in Group ‘Contractor' and also in the Group 'International’ and the access policies are ordered as below:

No. 1, Source= Contractor, Action = Allow, Access to destination resource = timecard

No. 2, Source= International, Action = Deny, Access to destination resource = timecard

Bob will have access to the timecard application. For Bob to not get access to the timecard application, the order of the access policies needs to be changed, with the Deny access policy being made as policy number 1.

Filter the Access Policies using the criteria that the specific Group is in the Source of the Access Policy and the Destination criteria that match the destination resource for which you want to set the policy. See, How do I view, search, and filter access policies?

Edit the policy with the lowest priority number by selecting Edit from the more options menu, or select Create new above to create a different Access Policy specifically for the Group.