5-53
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter5 Managing Policies
Managing Policy Bundles

Deleting a Shared Policy

Use Policy view to delete a shared policy from Security Manager.
Before you delete a shared policy, you should unassign it from any devices that use it, and configure
replacement policies for those devices. If a shared policy is assigned to a device, when the policy is
deleted the device no longer has a policy configured for the deleted shared policy, other than whatever
defaults might exist for the policy type. For more information about removing assignments, see
Modifying Policy Assignments in Policy View, page 5-51.
Note If a shared policy is part of a policy bundle that is assigned to a device, you must remove the assignment
before you can delete the shared policy.
Related Topics
Creating a New Shared Policy, page 5-51
Cloning (Copying) a Shared Policy, page5-44
Managing Shared Policies in Policy View, page 5-47
Step 1 In Policy view, select a policy type from the Policy Type selector, then select the policy to delete from
the Shared Policy selector. For more information about using these selectors, see Policy View Selectors,
page 5-49.
Step 2 Do one of the following:
Right-click the policy, then select Delete Policy.
Click the Delete a Policy button beneath the Shared Policy selector.
You are asked to confirm the deletion.
Managing Policy Bundles
Policy bundles are collections of shared policies that can be managed as a group. Policy bundles make
managing shared policies easier by allowing you to create the bundle one time and then assign all of the
policies in the bundle to a new device at once. The shared policies that are part of the bundle function in
the same way as other shared policies and modifying any of the shared policies that are part of a bundle
affects all devices that are assigned that policy either directly or through a policy bundle.
When creating a policy bundle, you can only assign one shared policy of each type to the policy bundle.
Multiple policy bundles can be assigned to a device as long as the policy types in those policy bundles
do not overlap.
When assigning a policy bundle to a device, if local policies on that device are the same policy type as
those contained in the policy bundle, you are given the option to inherit or replace the existing policies.
Note When you unassign a policy bundle, all policies that are part of that bundle are removed from the device.
Local policies will be lost and cannot be retrieved.