Add application-specific access policies for control of user access to SaaS applications.

  1. Navigate to Apps & Books > Applications > Access Policies > Add Policy.
  2. Complete the options on the Definition tab.

    Setting Description
    Policy Name

    Enter a name for the policy.

    Allowable name criteria includes the listed parameters.

    • Begin with a letter, either lowercase or uppercase, from a-Z.
    • Include other letters, either lowercase or uppercase, from a-Z.
    • You can include dashes.
    • You can include numbers.
    Description (Optional) Provide a description of the policy.
    Applies to

    Select SaaS applications to which you want to assign the policy.

  3. Complete the options on the Configuration tab and select Add Policy Rule or edit an existing policy.

    Setting Description
    If a user's network range is Select a network range previously configured in the network ranges process.
    And user accessing content from

    Select device types allowed to access content according to the criteria in this policy.

    and user belongs to group(s)

    Select user groups allowed to access content according to the criteria in this policy.

    If you select no groups, the policy applies to all users.

    Then perform this action Allow authentication, deny authentication, or allow access with no authentication.
    then the user might authenticate using

    Select the initial authentication method for accessing content.

    If the preceding method fails or is not applicable, then Select a fallback method for authenticating to content in case the initial method fails.
    Add fallback method

    Add another authentication method.

    The system processes methods from the top down, so add them in the order you want the system to apply them.

     

    Reauthenticate after Select the length of an allowable access session before the user must reauthenticate to access the content.
    Advanced Properties  
    Custom Error Message Enter a custom "access denied" error message the system displays when user authentication fails.
    Custom Error Link Text Enter the text for the link that navigates users away from the "access denied" error page when authentication fails.
    Custom Error Link URL Enter the URL address that navigates users away from the failed authentication page.
  4. View the Summary for the application-specific access policy.