Policy assignment locking

A global administrator can lock the assignment of a policy at any location within the Directory. Policy assignment locking prevents other users from switching the assignment of one policy for another. It is inherited with the policy.

Policy assignment locking is useful if a global administrator configures and assigns a certain policy at the top of the Directory to ensure no other users replace it with a different named policy anywhere in the Directory.

 

Policy locking does not prevent the policy owner from making changes to the named policy’s settings. Therefore, if you intend to lock a policy assignment, be sure that you are the owner of the policy.

Copyright © 2006 McAfee, Inc. All Rights Reserved.