Adding Users and Resources From Within Access Control Rules

Some administrators prefer to define all policy objects (users, groups, and resources) before creating access control rules. Although this structured approach works particularly well for the initial configuration, you may find it inconvenient for ongoing management. If so, you can define new resources directly from the interface used to create access control rules.

To add a user or resource to an existing access control rule

1. In the AMC, navigate to Security Administration > Access Control.

2. Click the name of an existing rule.

   The Edit Access Rule page displays.

3. In the Basic settings area, click Edit beside the From field. A separate page displays displaying your current users and groups. For the meaning of the icons, see the below table.

   

   Icon descriptions

   Icon	Description
   	Community
   	Any user belongs to the specific realm
   	User or local user

4. In the Basic settings area, click Edit beside the To field.

   A separate page displays displaying your resources and resource groups.

   

5. Click the + (New) icon.

   The page displayed next depends on the type of object you are creating.

6. Define the settings for the new user, group, or resource.

7. Click Save.

8. Select the checkbox beside the object you want to add to the access rule and then click Save.