Categories
You can filter the list by policy categories:
-
Compliance
-
Security
-
Quality of Service
-
Transformation
-
Troubleshooting
After selecting a category, you can further filter the list by the type of protection it fulfills.
If a policy is already applied, or if the protection it provides is already fulfilled by another policy you applied, the policy appears unavailable.
Policy Categories
Policies are categorized by the function they perform. For example, because you resolve issues with the help of logs, the Message Logging policy is categorized as a troubleshooting policy. The following table lists default policies by its category and the function it performs:
| Policy | Category | Fulfills | Required |
|---|---|---|---|
Client ID Enforcement |
Compliance |
Client ID Required |
None |
CORS |
Compliance |
CORS-enabled |
None |
Header Injection |
Transformation |
Header Injection |
None |
Header Removal |
Transformation |
Header Removal |
None |
HTTP Basic Authentication |
Security |
Authentication |
Security Manager |
IP Blocklist |
Security |
IP Filtered |
None |
IP Allowlist |
Security |
IP Filtered |
None |
JSON Threat Protection |
Security |
JSON Threat Protected |
None |
LDAP Security Manager |
Security |
Security Manager |
None |
Message Logging |
Troubleshooting |
Message Logging |
None |
OAuth 2.0 Access Token Enforcement Using External Provider Policy |
Security |
OAuth 2.0 protected |
None |
OpenAM Access Token Enforcement |
Security |
OAuth 2.0 Protected |
None |
PingFederate Access Token Enforcement |
Security |
OAuth 2.0 Protected |
None |
Rate Limiting |
Quality of Service |
Rate Limited |
None |
Rate Limiting, SLA-Based |
Quality of Service |
Rate Limited, Client ID required |
None |
Simple Security Manager |
Security |
Security Manager |
None |
Throttling -SLA-Based |
Quality of Service |
Throttled, Rate Limited, Client ID required |
None |
Throttling |
Quality of Service |
Throttled, Rate Limited |
None |
XML Threat Protection |
Security |
XML Threat Protected |
None |