Releasing managed system policies
In order to change the service which manages a managed system policy, or delete a policy, you must first release the policy from the service currently managing it. Before releasing the policy, all checked-out resources must be checked-in.
A managed system policy cannot be released or deleted while access is checked out. However, you can switch the managing node of the policy to transfer ownership to the new service. See Changing a managed system policy’s service ID.
To release a managed system policy :
Navigate to the Managed system policy information page .
From the General tab, click Release.
Once the policy is released, the Managed by field includes a drop-down box listing available services. On the managed system policies list page, the status is indicated as Unbound .
If password resets are being processed for push mode systems, the managed system policy is released at the end of the Privileged Access Manager Service’s current database poll interval, when the service recognizes that the managed system policy is marked for release and releases it. Until this happens, the Releasing status is indicated on the policy’s configuration page and in the Managed by column on the managed system policies list page. The poll interval is controlled by Minutes to wait to re-check database field on the Privileged Access Manager Service’s configuration page.
Once a managed system policy is released, it is not applied to managed systems or accounts.
If for some reason the service is not released in a reasonable amount of time, or if the service is bound but no longer exists, you can force an unbind. While the managed system policy is in the Releasing status, a Force release button will be visible next to the Managed by field.
You can now:
Select a service to manage the policy
or
Delete the managed system policy
You can also change the Service ID associated to this policy.