Using the Compliance Aggregate Policy

Learn how to group Compliance Policies together into a Compliance Aggregate Policy.

About Policies Managing Policies About Compliance Policies

For information about using policies in the context of the developer portal, see Business Policies.

Table of Contents

  1. About the Compliance Aggregate policy
  2. Creating a Compliance Aggregate policy
  3. Configuring a Compliance Aggregate policy
  4. Attaching the policy

About the Compliance Aggregate policy

a Compliance Aggregate Policy is a collection of compliance policies that are gathered together to form a policy group. Policies included in a Compliance Aggregate Policy are defined to achieve a specific purpose relative to governing Policy Manager objects (Organizations, Services, and so on).

back to top

Creating a Compliance Aggregate Policy

The first step in creating a policy is to define the basic policy information.

To add a compliance policy
  1. Go to Workbench > Browse > Organization, and select Policies > Compliance Policies. The Policies Summary is displayed.
  2. Click Add Policy.
  3. Choose the policy type and click Next.
  4. Specify a name (required) and description (optional) and click Finish. At the Completion Summary, click Close. The Add Policy Wizard creates a draft policy instance that you can then configure on the Policy Details page.

For more information, see Add Policy.

back to top

Configuring a Compliance Aggregate Policy

a Compliance Aggregate Policy is a containment policy that allows you to create a logical grouping of Policy Manager Compliance policies. Essentially, you first create the Compliance Aggregate policy, and then you add and configure each Compliance Policy that you want to include in the Compliance Aggregate policy. You can also define a new Compliance Policy in the context of the Compliance Aggregate policy.

Notes
  • Each policy must be configured as a separate entity.
  • Policies can be directly added to a Compliance Aggregate Policy, and exist inside the logical grouping.
  • You can reference policies that have already been defined, from within the Compliance Aggregate policy. In this scenario, the policies still display in their original location within Policy Manager but also display as part of the Compliance Aggregate policy.
  • A Compliance Aggregate Policy can include both newly defined and existing (referenced) policies.
  • If you change a policy that's referenced by one or more Aggregate policies, the change applies to all instances of the policy—the original instance and every occurrence within a Compliance Aggregate Policy.
  • You can attach the Compliance Aggregate policy to objects such as services in the same way that you'd attach any other policy.
To define new policies in a Compliance Aggregate Policy
  1. Go to Workbench > Browse > Organization and select the Policies > Compliance Policies folder. The Policies Summary is displayed.
  2. Find the policy on the list and click to go to the Details page for the policy.
  3. In the second panel, in the Policies section, click Add to add the first new policy.
  4. In the Select Policy Creation Option page, choose the policy type that you're adding and then click Next.
  5. Specify the policy name and then click Finish, then click Close.
  6. At the Details page for the policy you just added, click Modify. Configure the policy details as you normally would. The configuration options are different for each policy. For a full list of policies, with links to policy documentation details, see About Policies.
  7. In the left pane, click the Compliance Aggregate policy. In the center pane, click Add to add a second policy. Repeat steps 4 through 7 as needed to add all the policies you need in your Aggregate policy.
To reference existing policies in a Compliance Aggregate Policy
  1. Go to Workbench > Browse > Organization and select the Policies > Compliance Policies folder. The Policies Summary is displayed.
  2. Find the policy on the list and click to go to the Details page for the policy.
  3. In the second panel, in the Policy References section, click Modify to reference the first existing policy.
  4. In the Organization Tree that opens, check the boxes for one or more existing policies, and then click Apply. The policies are added to the Compliance Aggregate policy.

back to top

Attaching the Policy

To use the Compliance Aggregate policy, go to the Policies folder in the Root Organization and attach the policy to a web service, binding, or binding operation.

Back to top