Policy Details Page

FlexNet Code Insight 2019 R1

The Policy Details page lets you define or edit a policy that can be used to automatically review inventory items when they are published. Inventory items that meet any of the component, license, or security vulnerability criteria in the policy can be automatically approved or rejected (or flagged for a manual review) based on the policy definition. See Managing Policy Profiles for more information.

The page has the following fields:

Policy Details page

Column/Field

Description

General 

 

Name

The name of the policy that you are editing or copying.

If you are copying a policy, the name will read Copy of selected_policy, where selected_policy is the name of the policy you selected to copy. To change the name of the policy, type a new name in this field.

Description

The policy description, if it exists. You can edit or add a description.

Created

The name of the user who created the policy, and the date and time the policy was created. You can click the hyperlinked name to send an email to the user who created the policy.

Updated

The name of the user who last updated the policy, and the date and time the policy was updated. You can click the hyperlinked name to send an email to the user who updated the policy.

Security Vulnerabilities 

 

Only auto-approve inventory items if there are no associated security vulnerabilities

Select this checkbox to have Code Insight skip any matching license-based or component policies if the inventory item has any associated security vulnerabilities.

Reject inventory items if any associated security vulnerabilities have a CVSS score above…

Select this checkbox to have Code Insight automatically reject any inventory items with any associated security vulnerabilities that have a CVSS score above the specified value.

This policy takes precedence over any other automated approval policy.

Reject inventory items if any associated security vulnerabilities have a severity equal to or higher than … 

Select this checkbox to have Code Insight automatically reject any inventory items with any associated security vulnerabilities that have a severity equal to or higher than selected value.

This policy takes precedence over any other automated approval policy.

Licenses 

 

Select a License drop-down list

The list of licenses available to add to the policy as criteria for automatically reviewing inventory items.

Select a license from the list, and click Add License to add it to the policy.

Add License button

Click the Add License button to add the selected license as a criterion for the policy.

License list

The list of licenses (in a grid format) currently used by this policy as criteria for automatically reviewing inventory items.

Name—The name of the license.
Usage Guidance icon—Click to display the Usage Guidance dialog, in which you can add or edit text that will help reviewers in reviewing this license.
License Details icon—Click to display the License Details dialog for the selected license.
Action—Select one of the following to indicate what status is automatically assigned based on the license:
Approve 
Reject 
No Action (same as the “Not Reviewed” inventory status, thus requiring a manual review)
Delete icon—Click to delete the license from the policy.

Components 

 

Add Component button

Click the Add Component button to select the component and enter the version range as a criterion for the automated inventory review.

When you click this button, the Lookup Component dialog is opened, enabling you to enter search criteria to filter the available components. You can then select the component and specify the version range in the Versions field (see below). (See Lookup Component Dialog for information about the Lookup Component dialog.)

Component list

The list of current components with a version range (in a grid format) that this policy uses as criteria for automated inventory review.

Name—The name of the component.
Versions—Select a specific version or a range of versions for the given component. (The Versions from and to drop-down lists are populated with available versions for the component.) Here are some example ways to specify a version or version range:
To enter a specific version, select the same version in the Versions from and to fields.
To enter an explicit range, select a minimum version in the Versions from field and the maximum version in the to field.
To specify any version for the given component, select the wild card * in both Versions from and to fields.
To specify any version up to a specific version, enter the wild card * in the Version from field and the maximum version in the to field.
To specify any version after a specific version, select the specific version in the Versions from field and the wild card * in the to field.

The unknown option applies to certain components that were collected without a version value. To specifically handle unknown versions, set both Versions from and to fields to unknown.

Action—Select one of the following to indicate what status is automatically assigned based on the component version:
Approve 
Reject 
No Action (same as the “Not Reviewed” inventory status, thus requiring a manual review)
Delete icon—Click to delete the component entry from the policy.

Policy Details page actions 

 

Save

Click to save the changes you have made to this policy.

Close

Click to close the Policy Details page. If you have made changes the policy, be sure that you have clicked Save before closing the page; otherwise, changes are lost.

See Also

Policy Details Page

License Details Dialog

Lookup Component Dialog

Managing Policy Profiles

FlexNet Code Insight 2019 R1 Help Library

March 2019

 Copyright Information | Flexera

Open topic with navigation