List of Policies

Policyset

The default policyset will contain all the policies, initially with the default values. You can enable/disable these policies in the default policyset - but you cannot delete them. After you create a new policyset it will initially be empty (i.e. contain no policies). You are then free to add a policy which will override the default policyset.

Note

The Administration and Setup categories are only available in the default policyset. It does not make sense to override these policies for an individual user or repository.

The following policies are available:

Table 8.1. General Policies

PolicyValueDefinition
Multiple CheckoutEnabled or Disabled Check out files which are already checked-out by other users
Automatic MergeEnabled or Disabled If two changesets have changed different lines to the same file then PureCM can automatically merge both these changes. If this policy is disabled then users will need to manually resolve these edits to the same file. This applies when updating a workspace or performing a workspace merge.
View Archived ChangesetsEnabled or Disabled View all previously submitted changesets
Developer UserEnabled or Disabled Specifies whether the user can submit changesets.
View Local ChangesetsEnabled or Disabled View local changesets (developers' changesets being tracked on server)
Nonlockable AccountEnabled or Disabled Specifies whether the user cannot be locked. Users are locked after the password expires or the maximum password attempts has been exceeded
Stream LockingEnabled or Disabled Ability to lock the stream to prevent other developers submitting changes
Custom Action UserEnabled or Disabled Ability to perform custom actions
Lock Files on DeleteEnabled or Disabled Determines whether files are automatically locked when deleted in a workspace
Show Repository ViewEnabled or Disabled Determines whether the Repository View is shown when a Projects User

Table 8.2. Administration

PolicyValueDefinition
User AdministrationEnabled or Disabled Create, amend or delete users and groups
Policy AdministrationEnabled or Disabled Create, amend or delete policysets
Repository AdministrationEnabled or Disabled Create, amend or delete repositories
Event AdministrationEnabled or Disabled View the event log
Backup AdministrationEnabled or Disabled Start and end backups, and truncate logs
Connection AdministrationEnabled or Disabled View the connections list
License AdministrationEnabled or Disabled Add, modify or remove license keys

Table 8.3. Repository Admin

PolicyValueDefinition
File Type AdministrationEnabled or Disabled Create, amend or delete the default file types
Changeset AdministrationEnabled or Disabled Delete local changesets (developers' changesets being tracked on server) and shelvesets
Script AdministrationEnabled or Disabled Create, amend or delete scripts
Custom Action AdministratorEnabled or Disabled Ability to create/edit/delete custom actions and properties
File Lock AdministrationEnabled or Disabled Allow stream file locks to be removed
Projects UserEnabled or Disabled Allows you to view the Projects Perspective
Projects AdministrationEnabled or Disabled Create and modify Projects, Versions and Releases

Table 8.4. Setup

PolicyValueDefinition
Connection IP RangeIP address range Valid IP address range for a successful connection (see IP format note below)
Auto-Enroll Windows Domain UsersEnabled or Disabled Windows authentication users will automatically be added as users
Auto-Enroll Certificate UsersEnabled or Disabled Certificate authentication users will automatically be added as users
Audit User LoginsEnabled or Disabled Write audit messages for every login
Address Deny MaskIP address range IP address range from which access is denied (see IP format note below)
Address Allow MaskIP address range IP address range from which access is allowed (see IP format note below)
Maximum Password AttemptsNumber Number of incorrect password attempts until the user is locked
Password Expiry DaysNumber Number of days until the password expires and the user is locked
SSL/TLS Connections onlyEnabled or Disabled Only allow SSL/TLS connections
Enable Python ScriptingEnabled or Disabled This policy must be enabled in the default policyset to enable the Python triggers

Note

The ip format uses the internet standard. For example if I wanted to deny all ip addresses which match (10.0.0.* and 10.4.*) the value I would specify in the 'Address Deny Mask IP address'would be '10.0.0.0/24;10.4.0.0/16'. You must always specify a valid ip address (i.e. I need to specify 10.4.0.0 even though I'm only interested in 10.4) and that the number after the slash refers to the number of bits of the ip address to use (8 for the first number, 16 for the first two, 24 for the first three and 32 for the complete ip address). So if there was a specific ip address I wanted to deny I would type '10.0.0.4/32'.

Table 8.5. Stream

PolicyValueDefinition
SCC Status PathsFile specifications Allows new extensions to be added to the source code control interface
Ignore File PathsFile specifications Specify file specifications to be ignored by PureCM
Track Changes on ServerEnabled or Disabled Developer file changes are tracked on the server as a local changeset

Table 8.6. General Professional

PolicyValueDefinition
Proxy Referral ConfigurationString Specify how to refer clients to proxies local to them
Merge Rule AdministrationEnabled or Disabled Enable this to access the Merging view. This will allow users to create/modify/delete merge rules.
Enable Merge RulesEnabled or Disabled Enable this if you want to use merge rules.
Enable ReportsEnabled or Disabled Users with this policy can use report (i.e. the Reports View is available)

Table 8.7. Issue Management

PolicyValueDefinition
Issue AdministrationEnabled or Disabled Create, amend or delete issue states, fields, actions and forms
Issue UseEnabled or Disabled Create, amend or delete issues
Issue Field Value AdministrationEnabled or Disabled Ability to modify Issue Field Custom Values within the 'Button' Form Control Dialog

Table 8.8. Task Management

PolicyValueDefinition
Task AdministrationEnabled or Disabled Users with this policy can update all tasks
Task UserEnabled or Disabled Users with this policy can update and work on tasks you own
Task CreatorEnabled or Disabled Users with this policy can create tasks
Task ReportsEnabled or Disabled Users with this policy will see the project and version charts