Policies

The policy manager is used to configure the policies that control your apps. AppControl has a default set of policy checks and all of these are included in the global policy. This is automatically created, configured and is checked automatically. The global policy can be configured to meet the needs of your organization.

Policies have a specific scope. The scope determines which apps a policy applies to. There are 3 differentscopes in AppControl:

• Global. This policy will apply to all apps in your organization.

• Group. This policy applies to all apps in a specific app group.

• App. This policy applies to a specific app.

Policies are applied hierarchically (Global > Group > App), however only a single policy is used to check an app. If for instance a group policy is configured, this policy will be used instead of the global policy. If you want specific checks to be mandatory for all apps (or the entire policy), you can make the complete global policy mandatory or just specific checks in the global policy.

There are 2 tabs in the policy manager:

• App: This is an overview of all your app policies. These policies contain the policy checks that check the state of your apps.

• Data: This is an overview of your data policies. Data policies are used to classify app data, module role access, and user role access. The information in these policies is used by app policies to check the security of your apps.