KB Article | Forcepoint Support

Users can still access websites that are re-categorized to be blocked

Article Number: 000003078
Products: Forcepoint URL Filtering, Forcepoint Web Security, TRITON AP-WEB, Web Filter & Security, Web Security Gateway, Web Security Gateway Anywhere, Web Security and Web Filter
Version: 8.5, 8.4, 8.3, 8.2, 8.1, 8.0, 7.8, 7.7, 7.6, 7.5, 7.1, 7.0
Last Published Date: September 25, 2018

Why is Forcepoint allowing users access to websites that I re-categorized to be blocked?

To resolve this issue:

Verify the filtering role. Users may be associated with a role other than the Super Administrator Role.

In Forcepoint Security Manager, use the "Check Policy" tool located on the far right of the GUI to verify which role is filtering clients who are not filtered as expected.
Log out of Manager and log back in with a Delegated Administrator account which is a member of the displayed role.
Re-categorize websites as required from that Delegated Administrator.

In the case of still being blocked despite being allowed, the role other than Super Administrator is visible in the more information section of the block page when viewing source.

For more detail including screen shots and an example of where to see the role, see How do block pages work?

Also ensure that there are no exceptions in place for the site in question in the following locations as applicable to the deployment:

Go to Forcepoint Security Manager and click Main > Policy Management > Exceptions
Go to Forcepoint Security Manager and click Settings > Hybrid Configuration > Unfiltered Destinations
Go to Content Gateway and click Configure > SSL > Incidents (would be listed as a tunnel)
Go to Content Gateway and click Configure > Network > ARM > Static Bypass (as an IP or part of an IP range)

Is the article related to the topic you are looking for?
Yes No

Did the information in this article answer your question or resolve your issue?
Yes No

Comments

Thank you for the feedback and comments.

Want 24/7 Tech Support?

Learn more