To Configure a Custom Access Policy to Block Access for all Specified Users/IP Addresses

From burstekwiki
Jump to: navigation, search

To Configure a Custom Access Policy to Block Access for all Specified Users/IP Addresses

  1. Open the bt-WebFilter Management Console

  2. Right click on the ‘Custom Access Policies’ container object and select ‘New Custom Access Policy’

  3. On the ‘Common Information’ tab, type a name for the new policy (I.E. Production – Deny Social Networking)

  4. In the ‘Redirect URL’ field, enter the URL to your internal Web Server where you are hosting your redirect page. (If you do not have this configured, leave this blank)

  5. If you are using a Custom Redirect page that allows users to bypass the restriction for a certain amount of time, click the ‘Advanced Redirect Page Options’ button. If not, continue to step 7

  6. Specify how much time the user should be granted access to the web site for and click ‘OK’

  7. Click on the ‘Individual Access Policy Type’ button

  8. Select the ‘Restriction’ policy type and click ‘OK’

  9. Select the ‘Deny’ tab

  10. Click ‘Add’

  11. Make sure ‘Category’ is selected for the ‘Access Object Type’ and click the ‘Details’ tab. If you want to enter a URL or URL Mask, select the ‘URL’ option.

  12. Scroll down the list until you locate the Category you want to deny access for and place a check mark in the box. If you are using the URL option, enter the URL or Mask in the field provided

  13. If you want to use a schedule, select the ‘Schedule’ tab. Otherwise proceed to step 15

  14. On the ‘Schedule’ tab, select the name of the Schedule that you want to use.

  15. Click ‘Apply’ then ‘OK’

  16. Click on the ‘Apply To’ tab

  17. If you are applying this policy to a single IP address or User, they should appear in the window. Simply place a check mark in the box next to the item. If you are applying to a Domain Group, Click on the ‘Add Groups’ button on the bottom of the page.

  18. Enter the name of the group in the ‘Select Groups’ window and click the ‘Check Names’ button on the right.

  19. When the name resolves correctly, click ‘OK’. If the name does not resolve, check the spelling and try again or use the ‘Advanced’ button to locate the group.

  20. Click on the ‘Exemptions’ tab

  21. Click the ‘Add’ button and select either ‘User’ or ‘IP Address’ from the list. If you chose ‘User’ continue with the next step. If you chose ‘IP Address’ proceed to step 24

    Note Warning: In step 22, do not use the ‘Display Group Members’ in organizations where the group could have a very large number of users such as ‘Domain Users’. Instead, use the ‘Browse’ feature.

  22. In the ‘Select Users’ window click ‘Display Group Members’. The list of users applied to the group should appear. Locate the user(s) that you want to exclude and click ‘Add’

  23. When all the names that you want to exclude from the policy have been selected, click ‘OK’. You should see the user(s) in the Exemption window. Proceed to step 26

  24. In order to exclude an IP address, an IP address range must be selected on the ‘Apply To’ tab. Enter the IP address of an IP in the range that is applied to the policy. If the IP address does not match the currently configured range, you will receive an information box stating ‘IP address does not belong to any of the selected IP ranges’

  25. When the IP address is correctly entered, click the ‘OK’ button

  26. Click ‘Apply’ then ‘OK’ on the Custom Access Policy Properties page.

Personal tools