Tanzu Platform Self-Managed 10.1

PDF
self.managed.10.1 10.0 saas

Manage application policies

Last Updated March 03, 2025

This topic tells you how to manage application policies in Tanzu Platform to help manage Spring applications deployed in your environments. The application policies module can help enforce some of the applications’ security aspects and how applications are configured and deployed.

View application policies and findings

By default, the platform has four native policies. To view policies and findings:

  1. Click Policies > Application Policies to view these policies in the platform.

    Screen capture of the drop-down menu for viewing different types of policies.

  2. Click the Findings tab to see all the findings generated from the application policies.

  3. Filter and sort findings by various parameters as needed.

Create an application policy

Spring policies enforce organizational standards and best practices on application code detected in your repositories. To create an application policy:

  1. In Tanzu Platform, click Policies > Application Policies.
  2. Click New policy.

  3. In the General information section, enter the primary attributes for the policy.

    Screen capture of step 1 of the new app policy workflow. There are fields for the policy name, description, severity, and category.

  4. Select whether the policy applies to the organization or Project.

  5. (Optional) If you choose a Project, enter the cloud accounts that you want the policy to monitor.
  6. Click Next.
  7. In the Rule section, enter conditions to define the criteria you want your Spring policy to evaluate.
  8. Click Next.
  9. In the Schedule section, select the cadence at which you want the policy to scan your repositories. The policy does not run unless you set it to Active.
  10. Click Save.

Manage application policies

In Tanzu Platform, click Policies > Application Policies to access the application policies dashboard. On this dashboard you can manage policies by using the buttons on top of the policy listing. These actions allow you to create new policies, edit existing policies, activate or deactivate policies, run policies on demand, and delete policies.

Screen capture of the policy actions buttons.

View and edit policy details

To view policy details:

  1. Select a policy in the policies dashboard to access the Policy Details view, where you can view policy details, including configuration, schedule, previous runs, and so on. This page also enables you to edit the policy.

    Screen capture of the policy details section. The Properties tab is selected.

  2. Click the Findings tab to see findings for the policy.