Specifications
17
Ridgeline Concepts and Solutions Guide
251
Figure 198: Roles and Policies
Policies
Routing protocol applications use policies to control the use of routing information on a switch. With
Ridgeline you create policies which you can attach to roles When you define policies, you can
selectively permit a set of routes (or deny) based on their attributes for advertisements of the routing
domain. The routing protocol application can modify the routing information attributes, based on policy
statements.
You attach a policy to a VM where you can enable tracking on a switch on which Identity Management
is enabled.
Ridgeline supports two policy types:
● Identity Management
● VM mobility
Role Hierarchy
You can create roles in a hierarchy to reflect different organizational and functional structures.
Figure 199 illustrates a role hierarchy.
EX_idm_0003
Employee
Company = “Extreme”
Priority 3
Engineer
Company = “Extreme”
Department = “Eng”
Priority 2
Can access
intranet
Can access
development subnet
Can access
customer information
The Sales role does not
automatically inherit the
Company match condition
from Employee.
Engineers will inherit
“Can access intranet” and
will be able to also access
the development subnet.
Sales
Company = “Extreme”
Department = “Sales”
Priority 1
Roles Policies