Cisco Systems OL-24201-01 manual Displaying Hit Counts, 10-27

Table 10-13

Rule-based Group Mapping Policy Page

Option

Description

Policy type

Defines the type of policy to configure:

• Simple—Specifies the results to apply to all requests.

• Rule-based—Configure rules to apply different results depending on the request.

Caution If you switch between policy types, you will lose your previously saved policy

configuration.

Status

Current status of the rule. The rule statuses are:

Name

Rule name.

Conditions

Conditions that determine the scope of the policy. This column displays all current conditions in

subcolumns.

Results

Identity group that is used as a result of the evaluation of the rule.

Hit Count

Number of times that the rule is matched. Click the Hit Count button to refresh and reset this column.

Default Rule

ACS applies the Default rule when:

• Enabled rules are not matched.

• No other rules are defined.

Click the link to edit the Default Rule. You can edit only the results of the Default Rule; you cannot

delete, disable, or duplicate it.

Customize button

Opens the Customize page in which you choose the types of conditions to use in policy rules. A new

Conditions column appears in the Policy page for each condition that you add.

Caution If you remove a condition type after defining rules, you will lose any conditions that you

configured for that condition type.

Hit Count button

Opens a window that enables you to reset and refresh the Hit Count display in the Policy page. See

Displaying Hit Counts, page 10-10.

Step 2

Select an identity group.

Step 3

Click Save Changes to save the policy.

User Guide for Cisco Secure Access Control System 5.3

OL-24201-01

10-27