ChampionHow to... Enable RBA for all devices in one organization?
When creating automation policy, there is an option for selecting the Organization for where it "belongs", but still one needs to select devices from the device list, otherwise there is "no devices in organization" in Aligned Devices list.
What about the situation where the device list can be pretty dynamic, like clouds. So devices come and go?
Is the official method then to use device groups for that kind of alignment? Or are there other ways to enable RBA for organization's all devices.
Scheduled policy type Run Book Automation policies have always had their defaulted state set to zero devices aligned in order to mitigate the opportunity for unexpected mass execution upon creation of the policy; this is a long-standing, intentional design choice and is different than the default state for event-based RBA policies that defaults to apply to all devices and event policies, but require respective events to also match certain criteria before triggering.
In today's product releases you have two approaches for configuring a time-point scheduled RBA policy to apply to all devices within a specific Organization:
- If the member list is expected to be relatively static, you can set the Organization appropriately in the RBA policy editor which will filter the list of available devices down to only those in the selected organization followed by selected the full list and adding them to Aligned Devices.
- If the members of the Organization are expected to be dynamic (or if you'd rather not deal with potentially adding/removing devices from the RBA policy), you can create a Device Group with a dynamic rule based on selected Organizations. You would then set the Align With field to "Device Groups" which would then provision you to select the device group for which you want the scheduled RBA to apply to the member devices.
