Creating the VDI machine policy template for the base image

Use a machine policy template to apply a set of policies specific for Virtual Desktop Infrastructure support.

1. Log on to AccessAdmin.
2. Select Machine Policy Templates > New template.
3. Set the name of the new template to VDI BaseImage MPT.
   Note: The name is case-sensitive, so Example and example are two different template names.
4. Specify a criteria to assign a machine policy template. For example: machine tag.
   Note:

   • If you use machine tag, assign a name for it. The machine tag name must be the same as the value specified in the VDI_config.reg file. The default value is vdi_tag_example.
   • You can also use other criteria such as IP address, host name, or others. See "Setting machine criteria" in the IBM® Security Access Manager for Enterprise Single Sign-On Administrator Guide.
5. Enable Network Provider in this machine policy template.
   1. Navigate to Access Agent Policies > Logon/Logoff Policies.
   2. Set the value of Enable Network Provider to Yes.
6. Click Add to save the new settings.
7. Under Machine policy template assignments, select the VDI BaseImage MPT template and click the Up arrow icon until the VDI BaseImage MPT is at the top of the Machine policy template assignments list.
8. Verify that the base image machine name is removed from the IBM Security Privileged Identity Manager server through AccessAdmin.