Adding Attribute-Based Access Control Rules

To add attribute-based access control rules to the update:

After executing one of the operations the ABAC Rules dialog box opens:

The ABAC Rules dialog box contains attribute-based access control structure consisting of the elements hierarchy:

NOTE. Rules are not displayed in attribute-based access control structure. All rules located in the selected policy are automatically included in the update.

In the attribute-based access control structure select checkboxes next to the policies sets and policies to be added to the update. To select all elements, click the Select All button.

To save attribute-based access control statuses in the update, select the Transfer with Status Saving checkbox. The status determines whether it is allowed to check access permission by existing element and it is set up by checkboxes next to the attribute access structure elements in the security manager. On updating attribute access structure, statuses of structure elements will be refreshed. The rules statuses will be transferred with corresponding policy.

To update object attributes add the repository object, to which attributes belong, to the update. The attributes are transferred with the object.

To transfer or update user attributesthat ate used with attribute-based access control structure elements, add the security subject, to which these attributes belong, to the update.

After the ABAC rule is added, the Update Structure area displays the attribute-based access control rule:

NOTE. The object is updated on each repeated adding of attribute-based access control rules.

See also:

Creating an Update | Adding Repository Objects