Re: Cisco Umbrella Policy

tcooke · ‎10-26-2022

I am a new customer with cisco umbrella. We are using AD Groups to determine Categories that are allowed.

What is the best way to exclude a user from being blocked on a site ?

If we have 100 users excluded from shopping, And we want a user to be able to access Amazon.com.

Or we need 1 user to be able to access Facebook when the Social media category is blocked.

Do we create a new AD Group and a new umbrella policy that allows the site ? Or is there an easier way that i may be overlooking

aaragonb · ‎10-27-2022

Hello tcooke,

What I do in such a scenario is to create a new policy that I will set at the top of the stack and as the identity, I will place that specific user:

This way, that user will be allowed but the rest will be blocked.

tcooke · ‎10-27-2022

Thank You. I will try this

Esha Goyal · ‎11-18-2022

Hello Tcooke,

There are 2 ways to do this:

1. configure a separate policy for the user who should be able to access the mentioned site above the policy that is causing block.

2. In the same policy, you can configure a block page bypass rule for a specific user to bypass the blocked site , for configuration and steps for it, please follow this link: https://docs.umbrella.com/umbrella-user-guide/docs/set-up-a-block-page-bypass-user

I hope it helps.