On the
Configuration > Queues tab, select the SAF
queue where you want to configure the security policy.
On the
Security > Policies tab, select the topic
security policy you want to configure.
Select
the method from the drop-down box.
Click Add Conditions.
Choose a
predicate from the list box. Typically, you will choose
Group. When a group is used to create a
security role, the security role can be granted to all members of the
group (that is, multiple users). Click
Next.
The next
steps depend on what you chose for your condition predicate.
If you selected Group or
User, enter one or more arguments that
define the group or groups that should hold this role and click
Finish.
If you selected a time-constrained predicate, such as
Access occurs between specified hours,
select start and end times and a GMT offset and click
Finish.
If
necessary, use the buttons in the Role Conditions section to modify
the expressions:
The
Move Up and Move
Down buttons change the ordering of the selected
expression.
The
Combine and
Uncombine buttons let you merge or unmerge
role conditionsswitches the highlighted and and or statements between
expressions.
The Negate button
allows you to make a condition negative; for example,
NOT Group Operators excludes the Operators
group from the role.
The
Remove button deletes the selected
expression.
When all the
expressions in the Role Conditions section are correct, click
Save.
To activate these changes, in the Change Center of the Administration Console, click Activate Changes. Not all changes take effect immediately—some require a restart (see Use the Change Center).