Associating policy profiles with roles

You can associate user roles with policy profiles. In this case, the activation rule for this policy profile is based on the role: the policy profile becomes active for a user that has the specified role.

For example, the policy bars any GPS navigation software on all devices in an administration group. GPS navigation software is necessary only on a single device in the Users administration group—the device owned by a courier. In this case, you can assign a "Courier" role to its owner, and then create a policy profile allowing GPS navigation software to run only on the devices whose owners are assigned the "Courier" role. All the other policy settings are preserved. Only the user with the role "Courier" will be allowed to run GPS navigation software. Later, if another worker is assigned the "Courier" role, the new worker also can run navigation software on your organization's device. Running GPS navigation software will still be prohibited on other devices in the same administration group.

To associate a role with a policy profile:

1. In the main menu, go to 使用者和角色 → 角色.
2. Click the name of the role that you want to associate with a policy profile.

   The role properties window opens with the 一般 tab selected.

3. Select the 設定 tab, and scroll down to the 政策和設定檔 section.
4. Click 編輯.
5. To associate the role with:
   • An existing policy profile—Click the chevron icon () next to the required policy name, and then select the check box next to the profile with which you want to associate the role.
   • A new policy profile:
     1. Select the check box next to the policy for which you want to create a profile.
     2. Click 新政策設定檔.
     3. Specify a name for the new profile and configure the profile settings.
     4. Click the 儲存 button.
     5. Select the check box next to the new profile.
6. Click 分配到角色.

The profile is associated with the role and appears in the role properties. The profile applies automatically to any device whose owner is assigned the role.