Create a cloud policy

Create a cloud policy to control several details of cloud resources that are made available as catalog items.

Before you begin

About this task

When a user requests a cloud resource, each policy rule compares the requested resource against the conditions in the policy's rules. If the request meets all conditions, Cloud Management runs the actions that you specify for the policy.

Procedure

  1. Navigate to Cloud Management > Governance > Policy.
  2. Click New.
  3. Fill out the fields on the Policy form (see table).
    Figure 1. An example policy
    An example policy
    Field Description
    Policy Name Enter a descriptive name.
    Policy Group Select a policy group to which the policy belongs.
    Description Enter a description for what this policy does.
    Policy Trigger Select a trigger that specifies when the policy should be applied.
    Resource block

    [appears when a resource-related trigger is selected]

    Select the resource block to which the policy applies. See Resource blocks for an introduction to resource blocks.
    Operation Select the operation that, when it runs, kicks off a workflow. After that operational workflow runs, the action for the policy is executed. For example, you can select Provision, which indicates that the actions run when a user selects a catalog item, configures it they way they want, and submits the provisioning request.
    Blueprint

    [appears when a blueprint-related trigger is selected]

    Select the blueprint to which the policy applies. See Blueprints for more information.
    Catalog item

    [appears when a catalog-related trigger is selected]

    Select the catalog item to which the policy applies.
    Moment

    [appears for the on Cloud Resource and on Stack Operation Resource approval triggers.]

    Select pre-operation or post-operation to specify when the policy actions are triggered in relation to the operation.

    If you are integrating with Infoblox, use Pre-operation for a vSphere virtual machine and Post-operation for AWS and Azure clouds. This is because AWS and Azure control the allocation of IP addresses. You can register the IP address provided with Infoblox.

    Start Date Select a date that specifies when a policy becomes active.
    End Date Select a date that specifies when a policy is no longer active.
    Order of Execution Enter a number that specifies when this policy runs in comparison to other policies. Policies with lower numbers are run before policies with higher numbers.
    Status The status of the policy: Draft or Published. Only published policies are enforced. To publish a policy, click the Publish Policy button on the form header.

    You cannot edit actions for policies that are in the Published state.

    Related list
    Rules Configure the rules for this policy.
  4. Right-click the form header and select Save.
  5. When the policy is ready to use, click Publish.

What to do next

Next, configure rules for the policy.