Fragments make policies easier to administer, allowing you to extract common patterns that exist among different policies and to manage them in one place. For example, you can create a reusable policy fragment with policy components that you frequently use and apply that fragment in multiple policies. When the authentication requirements need adjustments, you can make those changes in the fragment without updating the policies that reference it.

Fragments can use other fragments; you can chain five or more fragments together. You can also use as many fragments as you want throughout a policy, provided that the way the policy is structured, there aren't over five fragments being processed at one time.

On the Fragments window:

  • Click Add Fragment to define a policy fragment.
  • Click the name of an existing fragment to edit its configuration.
  • Click Select Action to copy or delete an existing fragment.