Skip to main content

Use rules to assign administrative fields to account resources

You can define rules to automatically assign the following administrative fields to DigiCert agents in your DigiCert​​®​​ Trust Lifecycle Manager account:

  • Business units: Functional units or divisions within your organization, such as different departments.

  • Groups: Collections of agents that can be managed together in bulk.

These administrative fields help you to identify, monitor, and manage the agents in Trust Lifecycle Manager.

Anatomy of a rule

Each rule defines the following options for when and how to assign administrative fields to DigiCert agents:

  • Conditions: Which agents to assign the fields to, based on characteristics such as the applicable web applications, status, operating system, IP address range, and host name.

  • Assignments: The administrative fields to assign to the matching agents, which can include a mix of groups and business units.

Create a rule

To create a new rule for assigning administrative fields to agents in Trust Lifecycle Manager:

  1. In the Trust Lifecycle Manager menu, go to Policies > Rules.

  2. Select Create rule on the right.

    Complete the resulting form as described below.

  3. Rule name: Enter a name to help identify this rule.

  4. Description: Enter a description to help identify the purpose of this rule.

  5. Category: Select Tools & resources.

  6. Conditions:

    1. Attribute: Select a certificate attribute to match.

    2. Operator: Select how to match the attribute value.

    3. Value: Enter the value to match.

    4. (Optional) Use the AND and OR buttons to add more matching conditions.

      Hinweis

      AND means all conditions must match. OR means any condition can match.

    5. Select Save at the bottom of the sidebar to save the conditions.

  7. Assignments: Select Add assignments on the right. In the sidebar that opens, define the administrative fields to assign to the matching agents:

    1. In the Assign dropdown, select the type of administrative field to assign:

      • Groups: Select the name of the group to assign.

      • Business units: Select the name of the business unit to assign.

    2. (Optional) Select Add assignment to assign more types of administrative fields.

    3. Select Save at the bottom of the sidebar to save the assignments.

  8. Targets: This is set to Agents and cannot be changed. Currently, DigiCert agents are the only type of client tool that supports the dynamic assignment of administrative fields via rules.

  9. Review all the options you defined for the rule. If you need to make changes:

    • Conditions: Select Edit to change any aspect of the certificate matching conditions.

    • Assignments:

      • Select the pencil icon to edit an individual metadata assignment, or the minus icon to delete an assignment.

      • Select Add assignments to assign more metadata fields.

  10. When you're ready, select the Save rule button at the bottom to save the overall rule.

What happens after creating a rule?

When you create a new rule:

  • When new DigiCert agents are added to your account, any agents that match the conditions will automatically get the administrative field assignments you specified.

  • To apply the rule to existing DigiCert agents already in your account, find the rule listing on the Policies > Rules page and select Run now from the actions menu in the rightmost table column.

To verify the rule on the Policies > Rules page:

  • Select the Rule name link to see all the configuration details for the rule.

  • The Status column shows Active when the rule is in effect. These rules get automatically applied to any new agents added to your account that match the rule conditions.

To learn about managing the existing rules in your account, see Manage rules.

In diesem Abschnitt: