Grouping attestation policies (using policy collections)
To start attesting multiple attestation policies at the same time, you can group different attestation policies into a so-called policy collection. For example, this can be used in the context of an audit, when different attestations are run that have related content.
The following policies apply to policy collections:
-
You can assign an attestation policy to just one policy collection.
-
You cannot start attestation policies that belong to a policy collection separately.
-
When samples are attested, the same sample is used for all the attestation policies that belong to one policy collection.
Detailed information about this topic
Displaying policy collections
To obtain an overview, you can display policy collections.
To display policy collections
-
In the menu bar, click Attestation > Policy collections.
This opens the Policy Collections page.
-
(Optional) To display the main data of a policy collection, click the policy collection.
Creating policy collections
You can create a policy collection. You can then assign attestation policies to the policy collection that you want to be grouped together and started at the same time (see Setting up attestation policies and Editing attestation policies).
To create a policy collection
-
In the menu bar, click Attestation > Policy collections.
-
On the Policy Collections page, click 
Create policy collection.
-
On the Create Policy Collection pane, enter the main data of the new policy collection.
Table 23: Policy collection main data
|
Policy collection |
Enter a name for the policy collection. |
| Description |
Enter a description of the policy collection. |
| Disabled |
Select the check box to disable all the associated attestation polices. Thus, no attestations are carried out on the policy collection. |
| Owner (application role) |
Click Select and then the application role whose members can manage the policy collection. |
| Calculation schedule |
Define how often an attestation run is started with the associated attestation policies. Each attestation run creates a new attestation case respectively. |
| Owners |
Select the identity that is responsible for this policy collection. This identity can manage the policy collection. |
| Sample |
Select which sampling data to use (see Running sample attestations). Use a sample to limit the set of objects to attest for all assigned attestation policies.
NOTE: You can only select samples that have not yet been assigned to a policy collection. |
-
Click Create.
Editing policy collections
You can edit the main data of policy collections.
To delete a policy collection
-
In the menu bar, click Attestation > Policy collections.
-
On the Policy Collections page, click the policy collection that you want to edit.
-
On the Edit Policy Collection pane, enter the main data of the policy collection.
Table 24: Policy collection main data
|
Policy collection |
Enter a name for the policy collection. |
| Description |
Enter a description of the policy collection. |
| Deactivated |
Select the check box to disable all the associated attestation polices. Thus, no attestations are carried out on the policy collection. |
| Owner (application role) |
Click Select and then the application role whose members can manage the policy collection. |
| Calculation schedule |
Define how often an attestation run is started with the associated attestation policies. Each attestation run creates a new attestation case respectively. |
| Owners |
Select the identity that is responsible for this policy collection. This identity can manage the policy collection. |
| Sample |
Select which sampling data to use (see Running sample attestations). Use a sample to limit the set of objects to attest for all assigned attestation policies.
NOTE: You can only select samples that have not yet been assigned to a policy collection. |
-
Click Save.
You can edit the following main data.