Cisco Cisco Web Security Appliance S170 Guía Del Usuario
130
I R O N P O R T A S Y N C O S 6 . 5 F O R W E B U S E R G U I D E
WO R K I N G W I T H PO L I C Y G R O U P S
A policy group is an administrator defined configuration that allows you to apply acceptable
use policies to specific categories of users. After you create policy groups, you can define the
control settings for each group.
use policies to specific categories of users. After you create policy groups, you can define the
control settings for each group.
You can create as many user defined policy groups as required to enforce the proper access
control. The Web Security appliance displays policy groups together in a policies table.
control. The Web Security appliance displays policy groups together in a policies table.
All policies have a default, global policy group that applies to a transaction if none of the user
defined policy groups apply. A global policy group maintains default settings and rules that
apply to web transactions not covered by another policy. This group appears in the last row of
a policies table, and the Web Proxy applies its rules last if no other matching occurs.
defined policy groups apply. A global policy group maintains default settings and rules that
apply to web transactions not covered by another policy. This group appears in the last row of
a policies table, and the Web Proxy applies its rules last if no other matching occurs.
Creating Policy Groups
You can create policy groups based on combinations of several criteria, such as client subnet
or the URL category of the destination site. You must define at least one criterion for policy
group membership. When you define multiple criteria, the client request must meet all
criteria to match the policy group.
or the URL category of the destination site. You must define at least one criterion for policy
group membership. When you define multiple criteria, the client request must meet all
criteria to match the policy group.
Options used to configure policy groups allow you to specify exceptions to global policy
settings and control access to services for groups of users.
settings and control access to services for groups of users.
For more information about creating policy groups for the different policy types, see the
following locations:
following locations:
Using the Policies Tables
The policies table is an ordered list of policy groups and the settings you configure for each
filtering component. It displays policy groups by row and control settings by column. The
control settings you can define vary by policy type.
filtering component. It displays policy groups by row and control settings by column. The
control settings you can define vary by policy type.
Figure 7-1 on page 131 shows the Access Policies table.