Cisco Cisco Web Security Appliance S670 Troubleshooting Guide
How to control users from attaching file on to
Gmail ?
Gmail ?
Document ID: 118150
Contributed by Kei Ozaki and Siddharth Rajpathak, Cisco TAC
Engineers.
Engineers.
Aug 05, 2014
Contents
Question:
Question:
How to control users from attaching file on to Gmail?
Environment: Cisco Web Security appliance un AsyncOS version 7.1.x and above
Prerequisite:
HTTPS Proxy is enabled
Data Security Filters are enabled
Data Security Filters are enabled
Gmail supports both HTTP and HTTPS.
This is controlled per user under "Settings > General > Browser Connection" in Gmail's user interface.
If Gmail is configured to use HTTPS, then in order to control uploads on Gmail, we need to utilize
"Decryption Policies" on Cisco Web Security Appliance (WSA).
"Decryption Policies" on Cisco Web Security Appliance (WSA).
First, to simplify the setup, you should test HTTP connections on Gmail. As an example, steps below will
show you how to block users from uploading a PDF file.
show you how to block users from uploading a PDF file.
Please sign in to your Gmail account and navigate under "Settings > General > Browser Connection".
1.
Please set this option to "Don't always use https".
2.
Once saved, please sign out and sign back in. You should notice that your address bar is now showing
"http://".
"http://".
3.
Please click on "Web Security Manager > Data Security".
4.
Please then click on "Content" for the respective "Data Security Policy".
5.
Since you want to block PDF, please click on "Document Types" under "Block File Types".
6.
Then enable the checkbox beside "Portable Document Format (PDF)".
7.
Once done, please submit and commit the changes
8.
For troubleshooting purpose, please enable "Data Security Logs" under "System Administration > Log
Subscription".
Subscription".
Your logs should look something like below
1.