You can create Web-application-specific policies to manage user access to specific Web applications.

Configure the appropriate network ranges for your deployment. See Add or Edit a Network Range.

Configure the appropriate authentication methods for your deployment. See Configuring User Authentication in VMware Identity Manager.

If you plan to edit the default policy (to control user access to the service as a whole), configure it before creating Web-application-specific policy.

Add Web applications to the Catalog. At least one Web application must be listed in the Catalog page before you can add a policy.

1

In the administration console Identity & Access Management tab, select Manage > Policies.

2

Click Add Policy to add a new policy.

3

Add a policy name and description in the respective text boxes.

4

In the Applies To section, click Select and in the page that appears, select the Web applications that are associated with this policy.

5

In the Policy Rules section, click + to add a rule.

The Add a Policy Rule page appears.

a

Select the network range to apply to this rule.

b

Select the type of device that can access the web applications for this rule.

c

Select the authentication methods to use in the order the authentication method should be applied.

d

Specify the number of hours a Web application session can be open.

e

Click Save.

6

Configure additional rules as appropriate.

7

Click Save.