Defining Web Policies > Web Categories tab > Managing categories, actions, and SSL decryption
|
|
Actions (described in Policy enforcement actions) are applied to either standard or custom categories to determine whether and how end users are allowed to access websites in the category.
|
|
When SSL decryption is available and enabled, decryption may be applied to standard categories only.
|
|
This option is available for Forcepoint Web Security Cloud only.
|
|
If you enable one or more categories for decryption, you must also enable at least one of the analysis options on the Web Content & Security tab since these options define the types of security analysis that takes place. If you do not enable any of these options on the Web Content & Security tab, the categories you select are decrypted to enable correct notification pages, but not analyzed.
|
If you enable Analysis exceptions on the Web Content & Security tab and a site defined as an exception is also in a category selected for SSL decryption, the exception defines whether or not the HTTPS version of the site is analyzed. For example, if "google.com" is set to Never Analyze and the Search Engines and Portals category is selected for SSL analysis, https://www.google.com would be decrypted but not analyzed.
|
2.
|
4.
|
If you have made changes to one or more parent categories, optionally click Apply to Subcategories to use the same settings for both parent and child categories.
|
5.
|
Click Save.
|
The Block Access list configured on the Cloud Apps tab (see Cloud Apps tab) takes precedence over actions assigned on the Web Categories tab. If a blocked cloud app is requested using a URL categorized in a category that is set to allow, access to it is blocked.
|
Defining Web Policies > Web Categories tab > Managing categories, actions, and SSL decryption
|