Policy Set, Policy, Rule - all apply to a target.
If the request attributes match the attributes of a target, the policy associated
with the target is applicable to the request and its rules can be evaluated to
arrive at a permit or deny decision.
A target is made up of several sets of attributes: Subjects, Resources, Environments and Actions.
A request must match at least one set attributes in every one of the above groups.
A group may be left blank if there are no constraints required for access and a match is implied.
Add a new target by clicking on New. After a target is created, none or more target types
belonging to above four groups are created.
Next , create sets of match attributes for each of the target type groups.
Labels:
Page:
Target Type
Page:
Target Match