Skip to main content

Privacera Platform master publication

Security Zone

:

Concepts in Access Management

For conceptual background, see How Access Management Works.

Group data objects into Security Zones for more efficient administration of security policies. Security Zones can not span data sources.

Security Zone administration

  • Security Zones can only be created, updated, or deleted by a user with the ROLE_SYS_ADMIN role in Access Management.

  • Users can view, retrieve, and update policies only in security zones in which they have administrator privileges.

Security Zones use in authorization

When a plugin authorizes an access request, it determines the Security Zone in which the accessed data source resides. If the data source matches a Security Zone, only the policies of that Security Zone are used to authorize the access. If the data source does not match a Security Zone, the policies in the default (unnamed) Security Zone are used to authorize the access.

Create a Security Zone

  1. From the home page, click Access Management > Security Zone.

  2. On the Security Zones page, click + (Create Zone).

  3. Enter the zone details and click Save.

Edit a Security Zone

  1. From the home page, click Access Management > Security Zone.

  2. On the Security Zones page, select the zone and click Edit. The Add/Edit Zones page displays.

  3. Modify the zone details and click Save.

Delete a Security Zone

  1. From the home page, click Access Management > Security Zone.

  2. On the Security Zones page, select the zone and click Delete.

    A confirmation message appears.

  3. Click Yes.