Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Defining Web Policies > Web Categories tab > Filtering action order
Filtering action order
 
Related topics:
When a user requests access to a site, the cloud service determines whether to block or permit access based on the details in the policy associated with the user. See Creating a new policy for information.
By default, the cloud service applies the appropriate policy enforcement action to a user request using these steps. If, at any step, the appropriate action is to block the request, the user receives the appropriate block page.
1.
2.
3.
4.
a.
b.
c.
d.
e.
f.
If the Always allow access to cloud apps on the Allow Access list option is selected on the Cloud Apps tab of the policy, then requests to any cloud app listed on the Allow Access list are allowed, regardless of the action assigned to the associated web category or its security status. Requests to the apps listed on the Protected Cloud Apps list are always forwarded to CASB for further enforcement.
 
Note 
If you do not see the Always allow access to cloud apps on the Allow Access list option on the Cloud Apps tab, contact Technical Support.
When this option is enabled, the cloud service applies the appropriate policy enforcement action to requests using these steps.
1.
2.
3.
4.
5.
a.
b.
c.
d.
e.
f.
When a category exception specifies a time period, several factors affect whether the exception is applied:
*
*
*
*
Given the considerations above, when a per-time, per-user, or per-group exception also exists, it applies actions in this order:
*
*
*
*
*
*
In other words, rules with a usable time period defined take precedence over equivalent rules with no time period.
Within each of these, the cloud service uses the same order as the default.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Defining Web Policies > Web Categories tab > Filtering action order
Copyright 2022 Forcepoint. All rights reserved.