Skip to main content

Creating security policies

Creating an audit policy for storage virtual machines (SVMs) is the third step in configuring and applying ACLs to a file or folder. A policy acts as a container for various tasks, where each task is a single entry that can be applied to files or folders. You can add tasks to the security policy later.

About this task

The tasks that you add to a security policy contain associations between the NTFS security descriptor and the file or folder paths. Therefore, you should associate the security policy with each storage virtual machine (SVM) (containing NTFS security-style volumes or mixed security-style volumes).

  1. Create a security policy: vserver security file-directory policy create -vserver vserver_name -policy-name policy_name

    Example

    vserver security file-directory policy create -policy-name policy1 -vserver vs1
  2. Verify the security policy: vserver security file-directory policy show

    Example

    <kbd className="ph userinput linebreak">vserver security file-directory policy show</kbd>
                   Vserver          Policy Name
                 ------------     --------------
                     vs1              policy1