Manage policies

Policies define allowed and prohibited user actions when they manage cards.

Create a policy

To create a policy:

1. In the Management Console side panel, go to Configuration → Policies.
2. Click Create policy.
3. Specify the display name for the policy in the Name field, or copy settings from a previously created policy using the Copy from field.
4. Click Create.

Delete a policy

To delete a policy, select it from the list and click → Delete. You can deleted a policy if no cards issued using this policy are registered in Axidian CertiFlow.

Link a policy

Configure policy links to centrally apply policies to objects or users.

You can apply policies to the following objects:

• User catalog: Domain, Container, Organizational Unit
• Organization structure: Domain, Container, Organizational Unit, users, or groups from the user catalog

For more information, see Organization structure

info

You can apply a policy to an entire object (domain, container, or organizational unit) or to specific user groups within that object.

Policies applied to the LDAP user catalog take precedence over policies applied to the Axidian CertiFlow Organization structure.

To assign a policy to an object:

1. In the Management Console side panel, go to Configuration → Policy links.
2. Click Create policy link and select the required policy from the Policy list.
3. Define the following parameters:
   • Container – The scope of the policy. A container can be an Organizational Unit from the user catalog or a node in the Axidian CertiFlow Organization Structure.
   • Groups – An optional filter for applying the policy. For example, multiple policies can be assigned to a single container containing organizational users. These policies apply only to users who belong to catalog groups within that container.
   • Priority – A value that determines which policy takes effect if a user falls under the scope of multiple policies at the same time (for example, when a user belongs to two groups located within the same Organizational Unit).
   • Roles – Local roles that are granted permissions to manage the policy.
4. Click Create.

Policy settings

PKI settings

2 items

Axidian Access

Configure integration with Axidian Access

Workflow

Configure the available operations for Axidian CertiFlow administrators, operators, and users

Issue

Configure card issue and initialization settings

Authentication

Configure security questions

Agents

Configure Axidian CertiFlow Agent parameters

Card printer

Configure integration with card printer

Notifications

Configure alerts about Axidian CertiFlow local events