Example scenario of merging policies

This example scenario describes:

Instructions on applying policy settings to ESET Endpoint security products

How flags and rules are applied when policies are merged

Situations where the Administrator wants to:

Deny access for a regional office, San Diego Office in this example, to certain websites. In our example, access was denied to the following websites: www.forbidden.uk, www.deny-access.com, www.forbidden-websites.uk and www.forbidden-website.com

Allow access for a specific department in the regional office, Marketing Department in our example, to certain websites. In our example, access was denied to the following websites: www.forbidden.uk, www.deny-access.com

admin_policy_merge_example

In order to achieve the website access levels described above, the Administrator has to follow these steps:

1.Create a new static group named San Diego Office and then create a Marketing Department subgroup of the San Diego Office static group .

2.Navigate to Policies and create a new policy as follows:

i.Name the policy San Diego Office.

ii.Expand Settings and select ESET Endpoint for Windows.

iii.Navigate to Web and Mail > Web access protection > URL Address Management.

iv.Click the icon_apply_policy icon to Apply the policy and edit the Address list by clicking Edit.

v.Click List of blocked addresses and select Edit.

vi.Add the following web addresses: www.forbidden.uk, www.deny-access.com, www.forbidden-websites.uk and www.forbidden-website.com. Save the list of Blocked addresses and the address list.

vii. Expand Assign and assign the policy to San Diego Office and its subgroup Marketing Department.

viii. Click Finish to save the policy

This policy will be applied to San Diego Office and Marketing Department and will block the websites as shown below.

admin_policy_merge_blocked

3.Navigate to Policies and create new policy:

i.Name the policy Marketing Department

ii.Expand Settings and select ESET Endpoint for Windows

iii.Navigate to Web and Mail > Web access protection > URL Address Management

iv.Click the icon_apply_policy icon to Apply the policy, select the Append rule and then edit the Address list by clicking Edit. Append Rule places the Address list at the end when merging policies.

v.Click List of allowed addresses > Edit.

vi.Add the following web addresses: www.forbidden.uk, www.deny-access.com. Save the list of allowed addresses and the address list.

vii. Expand Assign and assign the policy to Marketing Department.

viii. Click Finish to save the policy.

This policy will be applied to Marketing Department and will allow access to the websites as shown below.

admin_policy_merge_allowed

 

4.The final policy will include both policies applied to San Diego Office and Marketing Department. Open the Endpoint Security product and navigate to Setup > Web and email > Advanced setup, select the Web and email tab > Web access protection and expand URL address management. The final Endpoint product configuration will be shown.

admin_policy_merge_merged_2

The final configuration includes:

1. Address list of San Diego Office policy

2. Address list of Marketing Department policy