Skip to main content

Desktop Conditional Policy

Basic Screen Layout

The conditional policy screen is composed as follows:

  1. Conditional Policy TabTab for applying conditional policies to apps created on the home page
  2. Priority: Display policy priorities (the smaller the number, the higher the priority)
  3. Add Policy: Top left**[➕ Add Policy]**Create a new policy with a button
  4. Search: Searchable by various criteria such as policy name, members, and usage status.

You can search for policies based on various criteria, including not only the policy name but also members, conditions, enforcement policies, and usage.

Types of Search Filters

FilterSearch MethodDescription
Policy NameInclusive SearchSearch for policy names containing keywords
MembersInclusive Search + Dropdown SelectionUser (Name·Email), Group, Department Search, Assignment/Exception Classification Selection, Multiple Selection Available
UsageDropdown SelectionUse / Unused Selection
conditionInclusive Search + Dropdown SelectionSearch by location (IP), time, and device conditions, multiple selections allowed
Execution PolicyDropdown SelectionAllow/Block Access, Select Additional Authentication Methods (Email·OTP), Multiple Selections Available

Member Search Details

  • When you enter a name or email in the search box, results will be displayed in real-time in a dropdown.
  • Allocation / ExceptionYou can search by distinguishing between cases where a tab is selected and cases where exceptions are handled.
  • 모든 구성원is fixed at the bottom of the dropdown and is included in the search results only when selected directly.
  • Location: 위치 제한 없음or enter a registered location name to search. The results are위치명 | IP 범위It will be displayed in the format.
  • time: 시간 제한 없음You can search by entering the registered time name. The results are시간명 | 시간 범위It will be displayed in the format.
  • Device: 모든 디바이스, Desktop, Tablet, MobileSelect medium.

Search Condition Combination Rules

  • **Between filters (AND condition)**If you set multiple different filters, only the policies that satisfy all conditions simultaneously will be displayed.
  • **Within Filter (OR Condition)**If you select multiple items within the same filter, any matching policies will be displayed.
  • Each condition set is displayed in the form of tags, and the tags'×You can remove individual conditions with the button.

⚠️ Priority changes are not possible when search filters are applied. To change the priority, please clear all search filters.

Fetch Policy

  • You can import and register a backup of a conditional policy from a JSON file (single policy) or a ZIP file (multiple policies).

[How to Use]

  1. Download: Check the item checkbox > Click the [Download Policy] button on the top button bar.
    • Download JSON file when 1 is selected
    • When selecting 2 or more: Download as a ZIP file.
  2. Import: Click the [Import Policy] button to select and register the backed-up JSON file or ZIP file.

➕ Add Policy

**[➕ Add Policy]**Clicking will take you to the new conditional policy page, where you can set the following items:

  • Basic Policy Information
  • condition
  • Execution Policy
  • Settings

📌 Basic Policy Information

Policy Name

  • name(required): Up to 20 characters can be entered
  • Description(Optional): Up to 200 characters can be entered.
  • The conditional policy name is a required field, and you must enter a unique name to identify the policy.

Members

Set users or groups to include or exclude in this conditional policy.

Allocation

  • All Users: Apply policies to all users
  • Select User or Group: Search for and select a specific user or group
    • Search by entering a username or group name in the search box.
    • The selected user or group can be confirmed in the box below.

Exclusion

  • Specify users or groups to exclude from the policy
  • Excluded members are not subject to the policy regardless of allocation.
  • The 'All Users' option cannot be used in the exclusions.
  • You can check the list of excluded members in the box below by selecting the members to exclude.

condition

Set conditions such as location and time to be used for policy judgment. Based on the assigned conditions, determine the user's access environment and decide whether to apply the policy.

Location Conditions

You can choose from the following two items for the location (IP) condition:

  • All Locations(default): Apply policy at all locations without specific location conditions
    • Exception selection: To exclude only specific locations among all locations, specify the locations to be excluded through 'exception selection'.
  • Select Registered Location: Select from the locations registered in the Security365 Management Center's condition items.
    • Click 'Select a location' to view the list of registered locations.
    • [+Register Location]: Click to add a new location condition
    • Exception Selection: Use 'Exception Selection' to exclude specific locations from the selected locations.

Time Conditions

You can choose from the following two time conditions:

  • all time(default): Always apply policy without any specific time limit
    • Exception Selection: To exclude only specific time zones from all times, specify the time to be excluded through 'Exception Selection'.
  • Registered Time Selection: Select from the registered time in the conditions section of the Security365 Management Center.
    • Click 'Select a Time' to check the list of registered times.
    • [+Register Time]: Click to add a new time condition
    • Exception Selection: Use 'Exception Selection' to exclude specific time zones from the selected time.

Condition Management Notes

  • Location and time conditions can be registered/deleted/edited in the [Condition Items] menu of the Security365 Management Center.
  • Use exception selection to finely configure when complex conditions are required.

Execution Policy

Access Policy

  • Set access permissions for assigned users and groups.

    • Desktop Registration

      • Choose whether to allow desktop registration.

    • Desktop Access

      • Choose whether to allow access to the registered desktop.

    • Additional authentication methods

      • Not in use: Accessing the target without additional authentication
      • Email Verification:
        • The authentication code input window appears, and the authentication process begins.
        • Time limit: 5 minutes
        • If you did not receive the authentication code in time, click 'Resend Authentication Code'
      • OTP Authentication:

        • Guidance on QR Code and Recovery Key During Initial Registration

        • Enter the authentication code after registration to proceed with authentication.

      ⚠️ When authentication fails

      • "Authentication has failed." Display alert popup
      • Unable to access the target

Isolation Security Policy

Set policies to control user behavior on the desktop. Each behavior control item can be selected for allow/block.

Behavior Control Items

Screen Marking

  • Enable/Disable Settings
  • When activated: Display a watermark on the screen containing username, email information, etc.
  • Data Leakage Prevention and Enhanced Accountability Tracking

Policy Settings

You can set the usage and validity period of this conditional policy.

Usage Status

  • use: The policy is activated and takes effect immediately
  • Not in use: The policy is disabled and not functioning.

Expiration Date

  • When not set: Operate indefinitely
  • Expiration Date Usage:
    • Checking the 'Expiration Date' item activates the calendar.
    • Set the period by selecting the start date and end date.
    • Policy operates only during the set period.

💡 Policy Application Priority

  • When multiple policies conflict, the policy with the higher priority (the smaller number) will be applied.
  • You can adjust the priority by dragging and dropping in the policy list.
  • If multiple policies are set under the same conditions, the most restrictive policy takes precedence.
  • Policy priorities must be set carefully as they are important for the effective management of policies.

Priority Quick Navigation

After selecting a policy, you can quickly change the priority using the following method.

  • Move to top / Move to bottom: Move immediately to the top or bottom
  • Priority Move Dropdown: Select the desired number to move directly to a specific location.

⚠️ Priority changes are not possible when search filters are applied. Please clear all filters before proceeding.

Download Policy Status

You can download the list of conditional policies as an Excel (.xlsx) file. This is provided separately from the existing JSON backup feature.

  • Download All: Save all registered policy information as an Excel file
  • Download Search Results: Save only the results with the current search filter applied as an Excel file.

💡 JSON download is for policy backup and restoration, while Excel download is used for status analysis and reporting purposes.