Ever wonder what tags were?
I found a great use for them for sites where you want to bot allow and block users from getting to sites.. as well as enforce limited browsing and or schedule a time of day
For example:
Let’’’’s suppose your teachers use abc.com as a resource but it’’’’s not a site you want your students to visit. Because it’’’’s a single site and you want to both allow and deny users it’’’’s often tricky to enforce policy... right?? wrong!
configuration / group policy / additional policy
add
select users : add your TEACHERS AD group to the selected entries
next
next
next
tags : call the tag "teacher-allow" click add so it shows up in the list
name and schedule : call it teachers allow
check off "turn on this policy for machines connecting anywhere"
save
then create another tag
configuration / group policy / additional policy
add
select users : add your STUDENTS AD group to the selected entries
next
next
next
tags : call the tag "STUDENTS-DENY" and change the action to BLOCK, click add so it shows up in the list
name and schedule : call it students-deny
check off "turn on this policy for machines connecting anywhere"
save
This gives you 2 tags.. one that will override policy for teachers and one that will specifically deny the students..
you can now apply those tags to sites listed in the local site list.
for example:
configuration / group policy / local sitelist
click Add Site
enter url : facebook.com
modify the site properties: select the teachers allow tag, click add then select the students deny tag and add it.
Effect:
This will allow teachers and deny students with out having to reclassify the site or get all convoluted with your policy.
This thread was automatically locked due to age.