Professional Documents
Culture Documents
How To Allow Specific Websites Without Authentication - Sophos Community
How To Allow Specific Websites Without Authentication - Sophos Community
How To Allow Specific Websites Without Authentication - Sophos Community
Applicable Version: 15.01.0 onwards
Overview
This article describes how we can allow users to access specific websites even if they are not authenticated.
Scenario
Allow unauthenticated users access to specific websites, in this case, www.sophos.com. The user should not be able to
access anything else other than www.sophos.com without getting authenticated.
Configuration
Go to Protection > Web Protection > Custom Web Category and click Add to create a new Web Category using the
parameters below.
https://community.sophos.com/kb/enus/123113 1/9
2017518 How to Allow Specific Websites without Authentication Sophos Community
Parameter Description
Traffic Shaping Specify the Traffic Shaping policy to be applied to the
None
Policy category.
Domain: Enter the domain(s) which are to be
blocked/allowed.
Domain/Keyword www.sophos.com
Keyword: You can also mention keywords. Any URL
containing those keywords is blocked/allowed.
https://community.sophos.com/kb/enus/123113 2/9
2017518 How to Allow Specific Websites without Authentication Sophos Community
Click Save to create the web category.
1. Go to Protection > Web Protection > Web Filter Policies or Objects > Policies > Web Filter and click Add.
https://community.sophos.com/kb/enus/123113 3/9
2017518 How to Allow Specific Websites without Authentication Sophos Community
2. Create a policy using the following parameters.
Clone Web Select a web category if you want to create a new policy
Allow_all
Categories based on an existing policy.
Download File The User will not be allowed to download files greater than
0
Size Restriction the configured size.
https://community.sophos.com/kb/enus/123113 4/9
2017518 How to Allow Specific Websites without Authentication Sophos Community
Click Add to add rules to the Web Filter Policy.
3. Add a rule to the Policy using the following parameters.
You can also search the category name in the text box
Category Allowed_Websites
provided.
HTTP Action
Allow Select the HTTP and HTTPS action.
HTTPS Action
https://community.sophos.com/kb/enus/123113 5/9
2017518 How to Allow Specific Websites without Authentication Sophos Community
Click Add to add the rule to the Web Filter Policy.
Click Save to save the Policy.
Step 3: Configure Default_Network_Policy
https://community.sophos.com/kb/enus/123113 6/9
2017518 How to Allow Specific Websites without Authentication Sophos Community
Since the Default_Network_Policy Rule is set to drop all unauthenticated traffic, you have to configure it to allow
www.sophos.com.
To configure the rule, follow the steps below.
- Go to Policies and select Default_Network_Policy to configure it.
https://community.sophos.com/kb/enus/123113 7/9
2017518 How to Allow Specific Websites without Authentication Sophos Community
Under the Policy for User Applications section, select Web Filter as Allow_Websites.
https://community.sophos.com/kb/enus/123113 8/9
2017518 How to Allow Specific Websites without Authentication Sophos Community
Click Save to apply the changes.
The configuration above allows unauthenticated users to access www.sophos.com. All other sites will require
authentication.
Document Version 1.0 – 02 November, 2015
Todos los comentarios enviados son leídos (por una persona), pero no podemos contestar a preguntas
técnicas específicas. Si necesita soporte técnico, publique una pregunta en nuestra comunidad. Como
alternativa, en el caso de los productos con licencia, abra una solicitud de soporte.
https://community.sophos.com/kb/enus/123113 9/9