Skip to content

Custom Policy Engine UI

The custom policy view has a UI to help organizations construct rules and tags using the policy engine YAML language. See the Policy Engine Overview section for more details.

Rule Generator

Follow these steps to generate a new rule:

  1. Select the Add button to open the Generate a new custom policy rule dialog.
  2. Enter a name and optional description for the new rule.
  3. Select the action: Alert, Allow, Block or Mask. For Mask actions also choose the masking profile to apply.
  4. Select the identity tags the rule should apply to. To match all identities, leave this empty. To define a negation, start typing not and select the desired tag.
  5. Select the data tags the rule should apply to. To match any data, leave this empty. To define a negation, start typing not and select the desired tag.
  6. Select the rule's priority
  7. Select if to continue processing lower priority rules if this rule is matched.

Creating New Custom Policy Rules

For example, You can generate a new rule to apply a masking profile on the result if user is not a member of the PII group:

Screenshot

Rule Editor

The YAML rule editor allows you to create new rules or edit existing ones. It provides typing suggestions and automatic completions based on the rule language syntax, as well as error highlighting:

Screenshot

Tags Editor

The YAML tag editor allows you to create new tags or edit existing ones. It provides typing suggestions and automatic completions based on the tag language syntax, as well as error highlighting:

Screenshot