Configuring Policies
As an administrator, you can declare policies in ADx and assign them to repositories. Assigning a policy to a repository means that it's available for use on folders and contents inside this repository. As a user, you can achieve the following goals by using policies:
- Define inheritance policy on the folder level
- Define the default type signature for all contents uploaded to a folder
- Grant or deny access to a folder based on the type signature of the entry (content or folder)
On this page
Prerequisites
Default Type policies and Type Restriction policies work based on custom type signatures. Therefore, if you want to use these policies, it's necessary to configure custom types first. Read about Configuring Custom Types for more information.
Configuring Inheritance Policies
Inheritance policies are assigned on folders in ADx Explorer. Check the video below for information on how to create and use inheritance policies:
The video shows the following steps:
-
Create the policy in Administration area. Use the available policy properties
Inheritance policy property Effect Name Policy name Inherit ACL All entries in a folder with this policy will inherit its Access Control settings Inherit Classification At the momentAll entries in a folder with this policy will inherit its assigned classifications Inherit Common Properties All entries in a folder with this policy will inherit property values for all common properties shared with the parent (if any) Inherit Policies All entries in a folder with this policy will inherit the policies of the parent Inherit Tags All entries in a folder with this policy will inherit the tags of the parent -
Add the policy to a repository in ADx Administration Area.
-
Synchronize the repository. Its policies can now be assigned to folders inside the repository.
-
Assign the policy to a folder.
Configuring Default Type Policies
Default Type policies are assigned to a folder in ADx. When in effect, default type policy defines the type signature of the uploaded content.
The video shows the following steps:
-
Create the policy in Administration area. Use the available policy properties
Default Type policy property Effect Name Policy name Default Type Type signature applied on entries affected by this policy Description Policy description In the video, we're adding
CustomContent
as the Default Type. -
Add the policy to a repository in ADx Administration Area.
-
Synchronize the repository. Its policies can now be assigned to folders inside the repository.
-
Assign the policy to a folder. Contents added to this folder have the
CustomContent
type, despite the fact that we didn't assign any type on upload.
Configuring Type Restriction Policies
Type Restriction Policies are assigned to a folder in ADx. When in effect, they restrict access to a folder based on type signatures. Restriction policies are inclusive, meaning that only the types added to the policy are allowed in the folder where the policy is in effect.
The video shows the following steps:
-
Create the policy in Administration area. Use the available policy properties
Type restriction policy property Effect Name Policy name Include Sub Types When true, policy affects the sub-types of the added type signatures Allowed Types Types explicitly allowed in folders where this policy is in effect Denied Types Types explicitly denied from folders where this policy is in effect (this policy has priority in case of conflict with Allowed Types) Description Policy description -
Add the policy to a repository in ADx Administration Area.
-
Synchronize the repository. Its policies can now be assigned to folders inside the repository.
-
Assign the policy to a folder. Denied types can no longer access the folder.
Rest API
Policy management services are also exposed in ADx REST API. More information, including examples, is available under Working with Policies with ADx REST API.