This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Blocking https by users dont working.

I need a help. when i create additional policy i can't block https sites by users. It's working for IP adress and for global policy but not for groups or users authenticated by Active Directory. Can you help me?

eg : i created policy to block facebook.com and added users to block list. it's working for http://facebook.com but not for https://facebook.com. when i block Personal & Dating in Default Policy or when i enter IP to my additional policy it's working for both cases.

This thread was automatically locked due to age.

0 TomA over 12 years ago

Hi, weclome to sophostalk!
This should work. If it works with IP address, it would indicate the problem is authentication.
Are you running in bridged/transparent mode? In these modes we can't authenticate https traffic (only http). So for https traffic we have to use a cached username for policy purposes. The problem occurs if a https site is the very first website you visit - there is no cached username, so policy is done by IP address (reverting to default policy).
This might have affected your testing? Does the problem still happen if you do some http browsing first?
Also, are you using Endpoint Web Control? This doesn't filter https traffic.
Let me know if I'm on the right track! I might be able to offer some advice.
- Tom.
:35135
Cancel
Vote Up 0 Vote Down

Cancel