Managing policies
Policies automatically grant permissions to users or groups based on predefined criteria. They’re ideal for managing time-based access for projects with fixed durations.
Creating an access policy for targets
To create a policy that grants access to a specific target, such as a server or database:
-
In the PingOne Privilege admin console, click Targets.
-
Locate the target you want to grant access to and click More Info.
-
On the target details page, click Create Policy.
-
Click Continue.
-
Select the users or groups who’ll be granted access through this policy. Click Continue.
-
Enter a Policy Name and define the policy’s active period by setting a Start Date, Start Time, End Date, and Hours.
-
Click Submit to save and activate the policy.
Creating an access policy for cloud resources
To create an access policy for a cloud resource:
-
In the PingOne Privilege admin console, go to Access Management > Resources.
-
In the Resource Catalog, find the resource you want to create a policy for. Click Policy.
-
In the list, select one or more identity and access management (IAM) roles to include in the policy. Click the icon to add them to the queue. When you’ve selected all the roles to include, click Add To Request Queue.
-
When you’ve added all necessary resources, click Continue.
-
Enter a Policy Name and define the policy’s active period by setting a Start Date, Start Time, End Date, and Hours.
-
Click Submit to save and activate the policy.