Cisco Systems OL-24201-01 Camera Accessories User Manual

Open as PDF

of 650

10-4

User Guide for Cisco Secure Access Control System 5.3

OL-24201-01

Chapter 10 Managing Access Policies

Customizing a Policy

Policy Creation Flow—Next Steps

• Access Service Policy Creation, page 10-4

• Service Selection Policy Creation, page 10-4

Access Service Policy Creation

After you create the basic elements, you can create an access policy that includes identity groups and

privileges. For example, you can create an access service for device administration, called NetOps,

which contains authorization and authentication policies that use this data:

• Users in the Supervisor identity group—Full privileges to all devices at all locations.

• User in the East, HQ, West identity groups—Full privileges to devices in the corresponding East,

HQ, West device groups.

• If no match—Deny access.

Policy Creation Flow—Previous Steps

• Network Definition and Policy Goals, page 10-2

• Policy Elements in the Policy Creation Flow, page 10-3

Policy Creation Flow—Next Step

• Service Selection Policy Creation, page 10-4

Service Selection Policy Creation

ACS provides support for various access use cases; for example, device administration, wireless access,

network access control, and so on. You can create access policies for each of these use cases. Your

service selection policy determines which access policy applies to an incoming request.

For example, you can create a service selection rule to apply the NetOps access service to any access

request that uses the TACAC+ protocol.

Policy Creation Flow—Previous Steps

• Network Definition and Policy Goals, page 10-2

• Policy Elements in the Policy Creation Flow, page 10-3

• Access Service Policy Creation, page 10-4

Customizing a Policy

ACS policy rules contain conditions and results. Before you begin to define rules for a policy, you must

configure which types of conditions that policy will contain. This step is called customizing your policy.

The condition types that you choose appear on the Policy page. You can apply only those types of

conditions that appear on the Policy page. For information about policy conditions, see Managing Policy

Conditions, page 9-1.

By default, a Policy page displays a single condition column for compound expressions. For information

on compound conditions, see Configuring Compound Conditions, page 10-40.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems OL-24201-01 Camera Accessories User Manual