Difference between revisions of "Policy Field Sets and Policies"

From SmartWiki
Jump to: navigation, search
Line 27: Line 27:
 
**Data Mask  
 
**Data Mask  
  
[[Image:DataCategory1.png]]
+
[[Image:DataCategory1.png|900px|border]]
  
 
* Populate the settings and click Save.  
 
* Populate the settings and click Save.  
Line 34: Line 34:
 
** Custom Fields
 
** Custom Fields
  
[[Image:DataCategory2.png]]
+
[[Image:DataCategory2.png|900px|border]]
  
 
NOTE: If you return to the Data Category Settings page then the category will be listed, with an Edit button to allow updates to be made.  
 
NOTE: If you return to the Data Category Settings page then the category will be listed, with an Edit button to allow updates to be made.  
Line 51: Line 51:
 
**Exclude Roles: lookup to select the roles that the policy should not apply for  
 
**Exclude Roles: lookup to select the roles that the policy should not apply for  
  
[[Image:DataPolicy1.png]]
+
[[Image:DataPolicy1.png|900px|border]]
  
  
Line 61: Line 61:
 
**Forbidden     
 
**Forbidden     
  
[[Image:DataPolicy2.png]]
+
[[Image:DataPolicy2.png|900px|border]]
  
 
The Linked Policies tab is also exposed
 
The Linked Policies tab is also exposed
  
 
NOTE: If you return to the Data Policy Settings page then the category will be listed, with an Edit button to allow updates to be made.
 
NOTE: If you return to the Data Policy Settings page then the category will be listed, with an Edit button to allow updates to be made.

Revision as of 13:24, 10 January 2017

This gives you the ability to create data categories and assign them to custom fields across your instance.

You can create security policies and attach them to data classes in order to control the visibility of field data across the entire instance.

This makes it easy for you to apply data access policies at a global level, for example if you have data sensitivity classes that apply across entire field sets.

These policies apply at the lowest level of security such that no matter where data is accessed from whether it's the object itself, a list view, or a report the visibility of data will be controlled according to each fields categorization and policy and the end user's access level.

Configuring

The process of configuring the Data Categories and Policies involves the following steps . . .

  • Creating Data Categories
  • Creating Data Policies
  • Linking Data Categories and Policies
  • Adding Data Category to Custom Fields

Creating Data Categories

  • Go to Global Settings - Security tab.
  • Click on the Data Categories link. You will be brought to the Data Category Settings page.
  • Click on the "New Data Category" button.
  • You will be brought to the New Data Category Settings page, which consists of the following settings:
    • ID: unique ID automatically generated on Save
    • Category Name: name used to identify the category
    • Description: description for the category
    • Category Type: select either Security or Prediction
    • Data Mask

DataCategory1.png

  • Populate the settings and click Save.
  • The Data Category Settings page refreshes and exposes 2 additional tabs:
    • Linked Policies
    • Custom Fields

DataCategory2.png

NOTE: If you return to the Data Category Settings page then the category will be listed, with an Edit button to allow updates to be made.

Creating Data Policies

  • Go to Global Settings - Security tab.
  • Click on the Data Policies link. You will be brought to the Data Policy Settings page.
  • Click on the "New Data Policy" button.
  • You will be brought to the New Data Policy Settings page, which consists of the following settings:
    • ID: unique ID automatically generated on Save
    • Name: name used to identify the policy
    • Description: description for the policy
    • Policy Type: select either Security or Prediction
    • Include Roles: lookup to select the roles that the policy should apply for
    • Exclude Roles: lookup to select the roles that the policy should not apply for

DataPolicy1.png


  • Populate the settings and click Save.
  • The Data Policy Settings page refreshes and exposes the Action field, with the following 4 options:
    • Edit
    • Read
    • Delete
    • Forbidden

DataPolicy2.png

The Linked Policies tab is also exposed

NOTE: If you return to the Data Policy Settings page then the category will be listed, with an Edit button to allow updates to be made.