cancel
Showing results for 
Search instead for 
Did you mean: 

Adding SAM resources

SOLVED
Wyle_
Occasional Contributor

Adding SAM resources

When adding SAM resources there are two places to enter server names/IP's.

You can add them in the role itself where it says: For client applications not listed above, specify what servers (if any) should be allowed. These servers will be accessible to any client application.

And you can add them in Users>Resource Policies>SAM Policies>Access.

My question is, do you have to add them to both or will either/or suffice?

1 ACCEPTED SOLUTION

Accepted Solutions
motd_
Occasional Contributor

Re: Adding SAM resources

Both are required. On the role you specify which traffic the SAM client will intercept. In the resource policies, you define to which servers the user has access.

If you only intercept traffic based on the server address, both places will have pretty much the same information. In that case, you could enable auto-allow on the SAM options page so that the resource policies are created automatically.

But there are cases when the two are different. For example if you intercept all traffic from an application (say, outlook.exe) but only want to allow it access to connect to a limited number of servers.

View solution in original post

1 REPLY 1
motd_
Occasional Contributor

Re: Adding SAM resources

Both are required. On the role you specify which traffic the SAM client will intercept. In the resource policies, you define to which servers the user has access.

If you only intercept traffic based on the server address, both places will have pretty much the same information. In that case, you could enable auto-allow on the SAM options page so that the resource policies are created automatically.

But there are cases when the two are different. For example if you intercept all traffic from an application (say, outlook.exe) but only want to allow it access to connect to a limited number of servers.

View solution in original post