The system administrator can set up rules for the resources access control. The rules are divided into three parts:
- Resource filter: The resources that the rule applies to.
- Condition: A logical condition that, if evaluated as true, grants access.
- Action: The action that the user is allowed to perform, if the condition is true.
Attributes connected to resources or users may be used in the rules. Examples of attributes include the name of user or resource, type of resource, and Active Directory groups for users or custom-defined attributes.
