To Configure a Custom Access Policy to Deny Access to Unknown URLs

From burstekwiki
Jump to: navigation, search

To Configure a Custom Access Policy to Deny Access to Unknown URLs

  1. Open the bt-WebFilter Management Console

  2. Right click on the ‘Custom Access Policies’ container object and select ‘New Custom Access Policy’

  3. On the ‘Common Information’ tab, type a name for the new policy (I.E. Production – Deny Unknown Web Sites)

  4. In the ‘Redirect URL’ field, enter the URL to your internal Web Server where you are hosting your redirect page. (If you do not have this setup, leave this blank)

  5. If you are using a Custom Redirect page that allows users to bypass the restriction for a certain amount of time, click the ‘Advanced Redirect Page Options’ button. If not, continue to step 7

  6. Specify how much time the user should be granted access to the web site for and click ‘OK’

  7. Click on the ‘Individual Access Policy Type’ button

  8. Select the ‘Permission’ policy type and click ‘OK’

  9. Select the ‘Alloy’ tab

  10. Click ‘Add’

  11. Make sure ‘Category’ is selected for the ‘Access Object Type’ and click the ‘Details’ tab

  12. Scroll down the list and place a check mark in every Category that you want to allow access to.

  13. If you want to use a schedule, select the ‘Schedule’ tab. Otherwise proceed to step 15

  14. On the ‘Schedule’ tab, select the name of the Schedule that you want to use.

  15. Click ‘Apply’ then ‘OK’

  16. Click on the ‘Apply To’ tab

  17. If you are applying this policy to a single IP address or User, they should appear in the window. Simply place a check mark in the box next to the item. If you are applying to a Domain Group, Click on the ‘Add Groups’ button on the bottom of the page.

  18. Enter the name of the group in the ‘Select Groups’ window and click the ‘Check Names’ button on the right.

  19. When the name resolves correctly, click ‘OK’. If the name does not resolve, check the spelling and try again or use the ‘Advanced’ button to locate the group.

  20. Click on the ‘Exemptions’ tab

  21. Click the ‘Add’ button and select either ‘User’ or ‘IP Address’ from the list. If you chose ‘User’ continue with the next step. If you chose ‘IP Address’ proceed to step 24

    Note Warning:

    In step 22, do not use the ‘Display Group Members’ in organizations where the group could have a very large number of users such as ‘Domain Users’. Instead, use the ‘Browse’ feature.
  22. In the ‘Select Users’ window click ‘Display Group Members’. The list of users applied to the group should appear. Locate the user(s) that you want to exclude and click ‘Add’

  23. When all the names that you want to exclude from the policy have been selected, click ‘OK’. You should see the user(s) in the Exemption window. Proceed to step 26

  24. In order to exclude an IP address, an IP address range must be selected on the ‘Apply To’ tab. Enter the IP address of an IP in the range that is applied to the policy. If the IP address does not match the currently configured range, you will receive an information box stating ‘IP address does not belong to any of the selected IP ranges’

  25. When the IP address is correctly entered, click the ‘OK’ button

  26. Click ‘Apply’ then ‘OK’ on the Custom Access Policy Properties page

Personal tools