Table of Contents
Advertisement
Define a name for the policy in the Policy Name field.
Step 6
In the Service drop-down list, choose either Web (HTTP) or Secure Web (HTTPS).
Step 7
In the URL field, add the URL string to be enforced in this policy.
Step 8
Note
In the Status drop-down list, click on an access action, either Allow or Deny.
Step 9
Click Accept.
Step 10
Policy URL Object Field Elements
When creating an HTTP/HTTPS policy, the administrator must enter a valid host URL in the
URL field. In addition, the administrator may enter port, path and wildcard elements to this field.
The following chart provides an overview of standard URL field elements:
Element
Host
Port
Path
Usernames
Wildcard Characters
Note Entries in the URL field can not contain ("http://", "https://") elements. Entries can also not
contain fragment delimiters such as "#".
Adding a Policy for an IPv6 Address
To add a policy for an IPv6 address, perform the following steps:
In addition to standard URL elements, the administrator may enter port, path and
wildcard elements to the URL field. For more information on using these additional
elements, see
"Policy URL Object Field Elements" section on page
If a path is specified, the URL policy is recursive and applies to all subdirectories. If,
for example "www.mycompany.com/users/*" is specified, the user is permitted
access to any folder or file under the "www.mycompany.com/users/" folder.
Usage
Can be a hostname that should be resolved or an IP address. Host information has
to be present.
If port is not mentioned, then all ports for that host are matched. Specify a specific
port or port range using digits [0-9], and/or wildcard elements. Zero "0" must not be
used as the first digit in this field. The least possible number matching the wildcard
expression should fall within the range of valid port numbers i.e. [1-65535].
This is the file path of the URL along with the query string. A URL Path is made of
parts delimited by the file path separator '/'. Each part may contain wildcard charac-
ters. The scope of the wildcard characters is limited only to the specific part con-
tained between file path separators.
%USERNAME% is a variable that matches the username appearing in a URL
requested by a user with a valid session. Especially useful if the policy is a group or
a global policy.
The following wildcard characters are used to match one or more characters within
a port or path specification.
* – Matches one or more characters in that position.
^ – Matches exactly one character in the position.
[!<character set>] – Matches any character in that position not listed in character
set. E.g. [!acd], [!8a0]
[<range>] – Matches any character falling within the specified ASCII range. Can be
an alphanumeric character. E.g.) [a-d], [3-5], [H-X]
301.
Users Configuration | 301
Hide quick links:
Advertisement
Chapters
Table of Contents
