Policy Profiles

SECURITY  Administrator or Super Administrator privileges in Workplace

NAVIGATION  Workplace Online > Configuration > Team Settings > Policy Profiles

Administrators define how Workplace will behave for all users on their team, and determine which users will have access to available Workplace functions. This is accomplished in part by setting Policy Defaults, which are applied to all users by default. The Policy Profiles page, however, allows administrators to create and manage additional policy profiles, comprised of individual policies that control configurable behaviors and features in Workplace, then assign those profiles to users or groups of users.

Policy profiles allow you to control the behavior of Workplace on as broad or as granular a level as you require. Once you've created your policy profiles, you'll apply them to groups or users in whatever way best supports your company's internal collaboration workflows and processes, as well as your security needs.

How policies are applied

Policies are applied to individual users in the following order of precedence:

  • Policy defaults are your baseline
    If you don’t apply any other policies, these defaults will apply to everyone. Refer to Policy Defaults for more information.
  • Policies applied to groups override policy defaults
    Policies applied are additive. When policies applied at the same level (for example, if a user belongs to two groups with conflicting policies) are in conflict, the more secure option will take precedence.
  • Policies applied to users are absolute
    Default policies and policies applied to groups will be superseded by policies applied to individual users.

Overriding policies

If you want to override a policy in a profile with a different setting for that policy in a different profile, you must add that policy to both profiles. In essence, you must intentionally create a policy setting conflict, and let Workplace figure it out.

For example, if you want to disallow remote access for the majority of your employees, but allow it for users who work from home, you would:

  1. Enable the Disable Remote Access policy in your Policy Defaults.
  2. Create a policy profile for remote users.
  3. Add the Disable Remote Access policy to it your remote user policy profile.
  4. Save your remote user policy profile.
  5. Disable the Disable Remote Access policy
  6. Assign the new policy profile to your remote users.

The users who only have Policy Defaults applied will not have remote access, but your remote users will.

How to...