Apply rules, rule sets, and rule set groups to applications and resources in PingAccess.
You can apply application access control and request processing rules to applications and their resources. These instructions describe how to create, apply, organize, and remove application rules.
- Click Applications and then go to Applications > Applications.
- Click to expand an application in the list.
- Click the Pencil icon.
- Optional:
Manage the policies for a resource.
- Click the Resources tab.
- Click to expand the resource you want to edit.
- Click the Pencil icon.
- Make the desired changes to the resource.
- To confirm your changes, click Save.
-
Select the applicable tab.
- For Web applications, select the Web Policy tab.
- For API applications, select the API Policy tab.
- For Web + API applications, you can configure both Web Policy and API Policy on separate tabs, as required.
- Using the radio selection, filter by Rules, Rule Sets, Rule Set Groups, or Rule Type.
- To create a new rule, click Create Rule.
- To apply a rule, rule set, or rule set group, drag a rule from Available Rules onto the policy bar.
-
Drag items to change the order in which they are evaluated at runtime.
Note:
Rule ordering can affect PingAccess performance. If an access control rule is more likely to reject access, it should appear near the top of the list to reduce the amount of processing that occurs before that rule is applied. This can be more noticeable if, for example, access control policies are applied along with processing rules. Applying access control policies first ensures that no processing happens on responses unless the user is allowed access.
- To remove an item from an application or resource, click - next to the item you want to remove.