Documentation | Support

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Refine Your Policies > Prioritizing Security Risk categorization
Prioritizing Security Risk categorization
Administrator Help | Forcepoint Web Security and Forcepoint URL Filtering | v8.5.x
By default, when a site belongs to a Security Risk category, Filtering Service applies an action based on the site's Security Risk classification, even when the site:
*
Is added as a recategorized URL in a permitted category
*
Appears in a limited access filter
 
* 
Note 
Although the Extended Protection categories are default members of the Security Risk class, because they group sites that are still being analyzed, they receive lower prioritization than other categories. As a result, custom categorization always takes precedence over Extended Protection categorization.
When Filtering Service or the hybrid service assigns a site to a Security Risk class category (based on Forcepoint URL Database category or Content Gateway analysis):
*
If a category filter is in effect, and the security-related category is blocked, the site is blocked.
*
If a limited access filter is in effect, the site is blocked.
Configure which categories are part of the Security Risk class on the Web > Settings > General > Risk Classes page in the Forcepoint Security Manager.
If you want requests managed based on custom categorization, regardless of whether the URL is classified as a Security Risk:
1.
Navigate to the bin directory on the Filtering Service machine (C:\Program Files\Websense\Web Security\bin or /opt/Websense/bin/, by default) and open the eimserver.ini file in a text editor.
2.
Navigate to the [FilteringManager] section and add the following line:
SecurityCategoryOverride=OFF
3.
Save and close the file.
4.
Restart Filtering Service.
*
Windows: Use the Services tool to restart Filtering Service.
*
Linux: Use the /opt/Websense/WebsenseDaemonControl command to stop and then start Filtering Service.
If you have the Hybrid Module, you can also disable this feature for the hybrid service:
1.
Navigate to the bin directory on the Sync Service machine (C:\Program Files\Websense\Web Security\bin or /opt/Websense/bin/, by default) and open the syncservice.ini file in a text editor.
2.
If it does not already exist, add a section called [hybrid], and then add the SecurityCategoryOverride parameter, as shown here:
[hybrid]
SecurityCategoryOverride=false
3.
Save and close the file.
4.
Restart Sync Service.
*
Windows: Use the Services tool to restart Sync Service.
*
Linux: Use the /opt/Websense/WebsenseDaemonControl command to stop and then start Sync Service.

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Refine Your Policies > Prioritizing Security Risk categorization
Copyright 2023 Forcepoint. All rights reserved.