PingAuthorize

Use case: Preventing a user from viewing a branch

About this task

The following are the general steps needed to prevent a user from viewing a branch:

Steps

  1. Create a policy named Prevent a user from viewing a branch in the System Policy Set of the Admin Point Governance branch.

  2. Add a rule and name it Deny if branch is Admin Point Governance and user is Steve Smith.

  3. Add a condition that returns true when Branch.Name equals Admin Point Governance.

  4. Add a condition that returns true when user.name equals Steve Smith.

  5. Select Components and drag the Core.Branch service to the Applies to section of the rule.

  6. Drag the Read action to the Applies to section of the rule.

  7. Save the policy.

  8. Commit the changes to the Admin Point Governance branch in Branch Manger > Version Control.

Result

This self-governance policy returns a Deny response if a user named Steve Smith tries to view the Admin Point Governance branch.