Policies

Use the Web Protection > Web Filtering > Policies tab to create and manage web filtering policy assignments. Policies are used to apply different filtering actions to specific users, groups, or time periods. These policies apply to the Allowed Networks that are on the Global tab. The first policy that matches the user and time will be applied, with the Base Policy applied if no others match. All profiles have a Base Policy that is always last and cannot be disabled.

To create a new policy, proceed as follows:

  1. Click the Plus icon on the upper right.

    The Add Policy dialog is displayed.

  2. Make the following settings:

    Name: Enter a descriptive name for this policy.

    Users/Groups: Select the users or user groups that this policy will apply to. You can also create new users or groups. How to add users is explained on the Definitions & Users > Users & Groups > Users page.

    Time event: The policy will be active for the time period you select. Choose Always to enable the policy at all times. You can also click the green Plus icon to create a new time event. Time period definitions are managed on the Definitions & Users > Time Period Definitions tab.

    Filter action: Select an existing filter action, which defines the types of web protection you want to apply in a policy. You can also click the green Plus icon to create a new filter action using the Filter Action Wizard. Filter actions can also be managed on the Web Filter Profiles > Filter Actions tab.

    Comment (optional): Add a description or other information.

    Advanced Settings:

    • Apply this policy to requests that have skipped authentication due to an exception: You can create exceptions on the Filtering Options > Exceptions tab to e.g. skip authentication for automatic updates that cannot use authentication. Select this checkbox to apply this policy to web requests that have skipped authentication.
  3. Click Save.

    The new policy appears at the top of the Policies list.

  4. Enable the policy.

    The new policy is disabled by default (toggle switch is gray). Click the toggle switch to enable the policy. The policy is now enabled (toggle switch is green).

Cross Reference – Find information about UI changes since Sophos UTM version 9.1 in the Sophos Knowledge Base.

Related Topics Link IconRelated Topics