Creating and modifying time windows for ACL policies - Documentation for TrueSight Server Automation 23.2

An ACL-based time window, is an RBAC object that describes the frequency, start time, duration, and permissions for providing time-based access to an object. For example, you could set a specific time period each Friday to make a set of servers available for software deploy jobs. 

Important

When defining a time window, you can assign only higher or same group of permissions than the default permissions assigned to the object through the ACL policy.

To create or modify a time window for an ACL policy

1. On the Policy Access Control List panel, click Add under the Time Windows section.
   The Time Window panel is displayed.

2. Complete the fields in the Time Windows tab as described in the following table:

   Option	Description
   Name	Enter the name you want to assign to the access control list (ACL) policy.
   Description	Optionally provide descriptive text.
   Valid period	Select the start and end dates for the time period. Note The end date is not inclusive. If you define a ACL-based window for an object, the system does not grant access to that object on the end date, even if the ACL-based window begins on an earlier date and extends into the end date.
   Time window	Select the start time and the duration (in hours) for the time period, which defines when the ACL-based window for the server is open. Note For Start time, enter a time in 24-hour format, relative to the time zone you select using the Time zone list at the bottom of the tab.
   Repetition	Select how often the ACL-based window is open. Select one of the following options: Once (specify the date) Daily Weekly (specify which days of the week) Monthly (specify which days of the months) - for example, entering 1,15,30 sets the window for the first, fifteenth, and thirtieth of the month
   Time zone	Select your time zone from the drop-down list.

3. Enter the information in the Permissions tab, as follows:
   1. Click the Add Entry icon. The Add New Entry window opens.
   2. From Role, select a role to which you want to grant permissions to execute against the ACL-based window.
   3. Under Available Authorizations, grant the desired authorizations for the role, for example SnapshotJobExecute.
4. To close the window, click OK.
5. To finish creating the policy, click OK.

ACL Policies can contain a number of ACL-based windows. To execute a job during a ACL-based window, right-click the job, choose Add permissions, and apply the ACL policy containing the ACL-based window to the job.