Define the authorization boundary

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • An authorization boundary defines the scope of a particular system that can be continuously managed and monitored using the CAM application.

    Before you begin

    Role required: sn_irm_cont_auth.system_owner or sn_irm_cont_auth.admin

    Procedure

    1. Navigate to All > Continuous Authorization & Monitoring > All Authorization Boundaries.
      All authorization boundaries
    2. Select New and then fill in the form.

      The settings are described in Fields on the Authorization Boundary form.

      Authorization boundary - new record
    3. Save the record.

      Use the tabs that appear to identify which systems and parts of systems you own and should go through the authorization process.

      Boundary tabs
    4. You can use the Boundary Filters tab to create filters for identifying all of your system elements.
      After running the filters, the results appear in the System Elements tab.
    5. If elements appear that should not be included in the authorization process, you can select them, and select Delete from the Actions on selected rows list at the bottom of the screen.
    6. You can select New to include additional assets or systems to the list of system elements in the authorization boundary.

    What to do next

    This completes the procedure for defining the authorization boundary. The next step is to create the authorization package that will be processed through approvals. You can initiate the process by clicking the Authorization Packages tab or via the navigation pane. For details, see Create an authorization package.