Create Policy
Learn to create a policy i n vHSM that defines what actions an attested identity can perform after successful remote attestation.
Creating a policy
Create a
policy.json
file that outlines the actions or capabilities and the resources or paths the identity is allowed to access after successful attestation. To create a policy that is attached to a provider seevhsm nitride policy -help
command.
Where:
name: Logical name of the policy.
identities: contains the list of identities
Use the
vhsm nitride policy create
command to register the policy:
The @policy.json
syntax ensures that the CLI can read and embed the file contents directly into the request.
The output is similar to:
Verify that the policy was created:
The output is similar to:
You can also reference this policy in your attestation.json
to bind it to specific identities.
Last updated
Was this helpful?