Configuration > Topic tab, select the SAF
topic where you want to configure the security policy.
Security > Policies tab, select the topic
security policy you want to configure.
the method from the drop-down box.
Click Add Conditions.
predicate from the list box. Typically, you will choose
Group. When a group is used to create a
security role, the security role can be granted to all members of the
group (that is, multiple users). Click
steps depend on what you chose for your condition predicate.
If you selected Group or
User, enter one or more arguments that
define the group or groups that should hold this role and click
If you selected a time-constrained predicate, such as
Access occurs between specified hours,
select start and end times and a GMT offset and click
necessary, use the buttons in the Role Conditions section to modify
Move Up and Move
Down buttons change the ordering of the selected
Uncombine buttons let you merge or unmerge
role conditionsswitches the highlighted and and or statements between
The Negate button
allows you to make a condition negative; for example,
NOT Group Operators excludes the Operators
group from the role.
Remove button deletes the selected
When all the
expressions in the Role Conditions section are correct, click
To activate these changes, in the Change Center of the Administration Console, click Activate Changes. Not all changes take effect immediately—some require a restart (see Use the Change Center).