Policies control various aspects of your deployment. Authentication Manager provides a default of each policy type and assigns them to each new security domain. You can also assign a custom policy. If you designate a new default policy, the new default policy is automatically assigned to existing security domains that use the default policy and to new security domains.
The policy assigned to a lower-level security domain is not inherited from upper-level security domains. New security domains are assigned the default policy that is in place at the time they are created, regardless of which policy is assigned to security domains above them in the hierarchy. For example, if the top-level security domain is assigned a custom policy, lower-level security domains are still assigned the default policy.