AvePoint Learn
Request article
Contact support
Request article
Contact support
English

    Home > Policy Enforcer > Configure a Policy Enforcer Rule

    Export to PDF

    Configure a Policy Enforcer Rule

    After adding a rule to a Policy Enforcer profile, you must configure the required settings for this rule in the Configure Rule window.

    To configure a particular Policy Enforcer rule, complete the following steps:

    1. Select the checkbox of the desired rule in the Rules table.

    2. Click Configure Rule on the ribbon, or click the link of the desired rule name in the Rules table. The Configure Rule window appears.

    3. To configure the selected rule in the Configure Rule window, complete the following settings:

      1. Rule Summary – In the Rule Summary field, the name, description, and affected event type of this selected rule will be displayed.

      2. Rule Parameters – In this section, each rule provides you with its specific parameters based on the event type it monitors. Configure the specified parameters to customize each Policy Enforcer rule. The settings configured with these parameters will be used as the standard by Administrator to identify the violations in SharePoint Online. Any actions and conditions in SharePoint Online that do not comply with the configured standard will be identified as out of policy.

        In the Configure Rule interface of the Delete, Copy, Move, Content Creation/Content Upload, Permission Modification Protection, Grant, Revoke and/or Modify Permissions Privilege, and User/Group Restriction rules, you can designate multiple users/groups to be affected by the rule by selecting defined groups.

      3. Filter Policy – Select a previously created filter policy from the Filter Policy drop-down list. A filter policy allows you to apply this rule using certain conditions.

      4. Custom Action – Select the checkbox on the right site to perform automatic actions on the violations once Administrator identifies out-of-policy objects, settings, and/or permissions based on the settings defined in the rule. For example, the out-of-policy files will be deleted to the site level recycle bin, and the out-of-policy settings will be reverted to the states defined in the rule. If this option is unselected, Administrator will not take any action on the violations.

      5. Recipient – Designate the users who will receive e-mail notifications for the violations of this rule.

        • Recipient – Use the people picker to specify the Active Directory users or Form-Based Authentication (FBA) users who will receive an e-mail notification report of the violations of this rule.

        • Include the site collection administrators – Select this option to deliver the e-mail notification of the violations to the site collection administrators.

        • Include the users who violate this rule – Select this option to notify the end-users who violate the specified rule of their out-of-policy operations. Note that this option is only available for those rules of Auditor Mode event types.

          Before configuring the Notification settings, you must make sure the Outgoing E-mail settings have been configured in Control Panel.

      6. Send Notification Immediately – Select whether to send notifications to the Recipients configured above immediately when Policy Enforcer identifies any violations of this rule.

        With the Send Notification Immediately setting enabled, e-mail notifications will be sent to recipients when violations are identified by Policy Enforcer rules. You can send e-mail notifications using customized e-mail templates configured in Control Panel. You can customize e-mail template settings for header, language, subject, and body.

    4. Click OK to save the configurations of this rule.

    On the Create Profile/Edit Profile/Create or Apply Profile page, you can also perform the following operations on the rules of the currently configured profile:

    • Remove Rule – To remove the previously added rules from the currently configured profile, select the checkboxes of the corresponding rules in the Rules table, and click Remove Rule on the ribbon.

    • Activate – Select the checkboxes of the added rules in the Rules table, and click Activate on the ribbon to activate the rules.

    • Deactivate – Select the checkboxes of the added rules which are already activated in the Rules table, and click Deactivate on the ribbon to deactivate the rules. When the rules are deactivated, the actions and conditions that are related to the deactivated rules will not be monitored by Policy Enforcer when running the jobs of this profile.