All Products
Search

This Product

    CloudSSO:Manage system and inline policies

    Document Center

    CloudSSO:Manage system and inline policies

    Last Updated:Jan 04, 2024

    This topic describes how to manage system policies and inline policies. You can add and remove system policies. You can create, modify, and delete inline policies.

    Limits

    • You can configure up to 20 system policies and 1 inline policy for each access configuration.

    • The document of an inline policy can be up to 6,144 characters in length.

    Add or remove a system policy

    1. Log on to the CloudSSO console.

    2. In the left-side navigation pane, click Access Configuration Management.

    3. On the Access Configuration Management page, find the desired access configuration and click its name.

    4. On the page that appears, click the Details tab and then the System Policy tab.

    5. Add or remove a system policy.

      • Add a system policy

        1. Click Add.

        2. In the Add System Policy panel, select the desired system policies and click Add.

        3. Click Close.

      • Remove a system policy

        1. On the System Policy tab, find the desired system policy and click Remove in the Actions column.

        2. In the Remove System Policy message, click OK.

    If you add a system policy to or remove a system policy from an access configuration that is provisioned for the accounts in your resource directory, you must re-provision the access configuration for the modification to take effect. For more information, see Re-provision an access configuration.

    Create, modify, or delete an inline policy

    1. Log on to the CloudSSO console.

    2. In the left-side navigation pane, click Access Configuration Management.

    3. On the Access Configuration Management page, find the desired access configuration and click its name.

    4. On the page that appears, click the Details tab and then the Inline Policy tab.

    5. Manage inline policies.

      • Create an inline policy

        1. Click Create Inline Policy.

        2. In the Create Inline Policy panel, edit the policy document and click OK.

          For information about the policy syntax, see Policy structure and syntax.

      • Modify an inline policy

        1. On the Inline Policy tab, click Edit.

        2. In the Edit Inline Policy panel, modify the policy document and click OK.

          For information about the policy syntax, see Policy structure and syntax.

      • Delete an inline policy

        1. On the Inline Policy tab, click Delete.

        2. In the Delete Inline Policy message, click OK.

    If you create, modify, or delete an inline policy for an access configuration that is provisioned for the accounts in your resource directory, you must re-provision the access configuration for the modification to take effect. For more information, see Re-provision an access configuration.