This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Is there a way to create a website access list - by user group or applied policy

I'd like to restrict user internet access to a specific list of websites?

Is it possible to block all website traffic from end point workstations, but have an exception rule to allow access to my trusted websites only.

Stephen

:15081


This thread was automatically locked due to age.
Parents
  • Hi Stephen,

    Sure, this is possible.  There are two main ways to do this:

    a) Block everything with the default policy

    - Add whitelisted sites to 'Configuration > Group Policy > Local Site List'

    - When adding a site, tag them as 'Globally allowed sites'

    - Set all categories to be blocked in 'Configuration > Group Policy > Default Policy'.

    All users will be able to access the globally allowed sites.  If you want to give specific users a higher level of access, you can create additional policies that override the default.

    b) Block everything using an additional policy

    - Add whitelisted sites to 'Configuration > Group Policy > Local Site List'

    - When adding a site, create your own tag for them - eg 'Whitelist'

    - Create an additional policy in 'Configuration > Group Policy > Additional Policy'

    - Add specific users/groups to the policy

    - Block all categories in the policy

    - On the 'Tags' tab, add the tag you created (eg 'Whitelist') and set it to allow

    - Save the policy

    In this configuration, only members of this specific policy will be restricted to the whitelist.  These users will only be able to access sites tagged as 'Whitelist'.

    If you have any difficulties, or need more specific instructions, feel free to ask :)

    Tom.

    :15175
Reply
  • Hi Stephen,

    Sure, this is possible.  There are two main ways to do this:

    a) Block everything with the default policy

    - Add whitelisted sites to 'Configuration > Group Policy > Local Site List'

    - When adding a site, tag them as 'Globally allowed sites'

    - Set all categories to be blocked in 'Configuration > Group Policy > Default Policy'.

    All users will be able to access the globally allowed sites.  If you want to give specific users a higher level of access, you can create additional policies that override the default.

    b) Block everything using an additional policy

    - Add whitelisted sites to 'Configuration > Group Policy > Local Site List'

    - When adding a site, create your own tag for them - eg 'Whitelist'

    - Create an additional policy in 'Configuration > Group Policy > Additional Policy'

    - Add specific users/groups to the policy

    - Block all categories in the policy

    - On the 'Tags' tab, add the tag you created (eg 'Whitelist') and set it to allow

    - Save the policy

    In this configuration, only members of this specific policy will be restricted to the whitelist.  These users will only be able to access sites tagged as 'Whitelist'.

    If you have any difficulties, or need more specific instructions, feel free to ask :)

    Tom.

    :15175
Children
No Data