Skip to content
GitHub

Creating a Policy

A policy is an entity that, when attached to an identity, defines their permissions. Customer managed policies are standalone policies that you administer. You can then attach the policies to identities (users or groups).

SRA Auth provides a visual policy editor. To create a policy, follow the steps below:

  1. Log into the VECTR as an admin.

  2. From top navigation, choose the Configuration cog in the top right VECTR Configuration and select Asset Management.

  3. Click on the Policies tab.

  4. Click on Create New Policy.

  5. Choose a Policy Type.

    • User or Group Based. This is most commonly used.

    • Resource Based. Note that creating a global policy will apply to all users.

  6. Click Next.

  7. Enter a Policy Name and Description (optional).

  8. Click Next.

  9. Create a rule for your policy:

    • Resources. Select the test environments to add to the policy. Selecting All Databases will create a wildcard rule that will apply to all environments, including those created later.

    • Actions. Choose the action(s) to add to the policy. Write action implies update and delete.

  10. To add another rule, click Add another rule. When a policy has multiple rules, it will only apply if all rule conditions are met.

  11. When you are finished adding rules, click Save.