> ## Documentation Index
> Fetch the complete documentation index at: https://confidence.spotify.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Create a Policy

> Learn how to create a policy to grant roles to users or groups.

export const HowToSchema = ({name, description, steps = []}) => {
  const schema = {
    "@context": "https://schema.org",
    "@type": "HowTo",
    name,
    description
  };
  if (steps.length > 0) {
    schema.step = steps.map((s, i) => ({
      "@type": "HowToStep",
      position: i + 1,
      name: typeof s === "string" ? s : s.name,
      text: typeof s === "string" ? s : s.text || s.name
    }));
  }
  return <script type="application/ld+json" dangerouslySetInnerHTML={{
    __html: JSON.stringify(schema)
  }} />;
};

<HowToSchema
  name="Create a Policy"
  description="Learn how to create a policy to grant roles to users or groups."
  steps={[
{ name: "Go to Policies", text: "Go to Admin > Policies." },
{
  name: "Click Create",
  text: "Click Create to open the create policy dialog.",
},
{
  name: "Add principals",
  text: "In the Principals field, add the people and groups you want to grant roles to.",
},
{
  name: "Add roles",
  text: "In the Roles field, select one or more roles to assign to the principals.",
},
{ name: "Save the policy", text: "Click Create to save the policy." },
]}
/>

A [policy](../iam/policies) connects one or more groups, users, or API clients with a set of roles, granting permissions across your Confidence workspace.

## Create a Policy

<Steps>
  <Step title="Go to Policies">
    Go to **Admin > Policies**.
  </Step>

  <Step title="Click Create">
    Click **Create** to open the create policy dialog.
  </Step>

  <Step title="Add principals">
    In the **Principals** field, add the people and groups you want to grant roles to.
  </Step>

  <Step title="Add roles">
    In the **Roles** field, select one or more roles to assign to the principals.
  </Step>

  <Step title="Save the policy">
    Click **Create** to save the policy.
  </Step>
</Steps>

<Tip>
  Use policies to grant permissions globally. When you give a user or group a role via a policy, that group has that role for all resources that the role governs. For more granular control, use manual permissions on individual resources instead.
</Tip>

## Related Resources

<CardGroup cols={2}>
  <Card title="Policies Reference" href="/docs/iam/policies">
    Deep dive into policy configuration
  </Card>

  <Card title="Create Custom Roles" href="/docs/how-to-guides/create-custom-role">
    Configure fine-grained permissions
  </Card>

  <Card title="Roles Reference" href="/docs/iam/roles">
    Understand available roles
  </Card>

  <Card title="Invite Users" href="/docs/how-to-guides/invite-user">
    Add new users to your organization
  </Card>
</CardGroup>
