Using the Compliance Aggregate Policy

Learn how to group Compliance Policies together into a Compliance Aggregate Policy.

For information about using policies in the context of the Community Manager developer portal, see Business Policies.

Table of Contents

About the Compliance Aggregate policy

a Compliance Aggregate Policy is a collection of compliance policies that are gathered together to form a policy group. Policies included in a Compliance Aggregate Policy are defined to achieve a specific purpose relative to governing Policy Manager objects (Organizations, Services, and so on).

Creating a Compliance Aggregate Policy

The first step in creating a policy is to define the basic policy information.

To add a compliance policy

  1. Go to Workbench > Browse > Organization, and select Policies > Compliance Policies. The Policies Summary is displayed.
  2. Click Add Policy.
  3. Choose the policy type and click Next.
  4. Specify a name (required) and description (optional) and click Finish. At the Completion Summary, click Close. The Add Policy Wizard creates a draft policy instance that you can then configure on the Policy Details page.

For more information, see Add Policy.

Configuring a Compliance Aggregate Policy

a Compliance Aggregate Policy is a containment policy that allows you to create a logical grouping of Policy Manager Compliance policies. Essentially, you first create the Compliance Aggregate policy, and then you add and configure each Compliance Policy that you want to include in the Compliance Aggregate policy. You can also define a new Compliance Policy in the context of the Compliance Aggregate policy.

Notes

  • Each policy must be configured as a separate entity.
  • Policies can be directly added to a Compliance Aggregate Policy, and exist inside the logical grouping.
  • You can reference policies that have already been defined, from within the Compliance Aggregate policy. In this scenario, the policies still display in their original location within Policy Manager but also display as part of the Compliance Aggregate policy.
  • A Compliance Aggregate Policy can include both newly defined and existing (referenced) policies.
  • If you change a policy that's referenced by one or more Aggregate policies, the change applies to all instances of the policy—the original instance and every occurrence within a Compliance Aggregate Policy.
  • You can attach the Compliance Aggregate policy to objects such as services in the same way that you'd attach any other policy.

To define new policies in a Compliance Aggregate Policy

  1. Go to Workbench > Browse > Organization and select the Policies > Compliance Policies folder. The Policies Summary is displayed.
  2. Find the policy on the list and click to go to the Details page for the policy.
  3. In the second panel, in the Policies section, click Add to add the first new policy.
  4. In the Select Policy Creation Option page, choose the policy type that you're adding and then click Next.
  5. Specify the policy name and then click Finish, then click Close.
  6. At the Details page for the policy you just added, click Modify. Configure the policy details as you normally would. The configuration options are different for each policy. For a full list of policies, with links to policy documentation details, see About Policies.
  7. In the left pane, click the Compliance Aggregate policy. In the center pane, click Add to add a second policy. Repeat steps 4 through 7 as needed to add all the policies you need in your Aggregate policy.

To reference existing policies in a Compliance Aggregate Policy

  1. Go to Workbench > Browse > Organization and select the Policies > Compliance Policies folder. The Policies Summary is displayed.
  2. Find the policy on the list and click to go to the Details page for the policy.
  3. In the second panel, in the Policy References section, click Modify to reference the first existing policy.
  4. In the Organization Tree that opens, check the boxes for one or more existing policies, and then click Apply. The policies are added to the Compliance Aggregate policy.

Activating a policy

When you create and configure a policy, the policy is in Draft state. When the policy configuration is complete, activate the policy: click Activate Policy and then confirm. See Activate a Policy.

A policy in Draft state is not available for general use. Once you activate the policy, it is in Active state and is available for use.

Attaching a policy

To use the Compliance Aggregate policy, go to the Policies folder in the respective organization and attach the policy to a web service, binding, or binding operation.