Policies define criteria which users and the clients they are connecting from must meet to be allowed to access services on, or in the case of virtual assets via, an asset.
User Groups limit the circle of authorized persons.
Client characteristics limit the group of authorized clients and include:
- operating system
- permissible minimal and/or maximal operating system versions
- geographical location at the time of access (Allowed Origins)
The list of Accessible Assets defines the applicability of a policy.
Policies can be disable and are then not evalutated.