Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
591
Views
0
Helpful
4
Replies

HIPS (creating a rule with condition)

csco11029673
Level 1
Level 1

‎02-22-2009 02:45 AM - edited ‎03-09-2019 10:03 PM

I have a problem in CSAMC

i need to create a rule that prevents the saving of pdf files from our company's intranet .

the rule i reached is preventing the saving of all pdf files on local drive or removable media, also a rle to block the web browsers from saving pdf files

the result will block the saving from any other site.

is there a way to add a condition to the rule to preform this action when accessing a certian url

Labels:
0 Helpful
4 Replies 4

jan.nielsen
Level 7
Level 7

‎02-23-2009 04:49 AM

Unfortunately CSA does not support using URLs with the names, however you can do a rule that puts your browser in an application class when it tries to reach your intranet on it's ip address on say port 80/443, to further ensure this will only happen when you are on your internal network, you could make the rule dependant on something like MC Reachable and Internal Corporate DNS Suffix state, then create a file access rule for that application class that blocks .pdf writes.

0 Helpful

csco11029673
Level 1
Level 1
In response to jan.nielsen

‎02-25-2009 12:23 AM

Dear Sir,

this idea is great but i have one problem i created the application class for web browser called web browser dynamic

then i marked the radio box when dynamically defined by policy rules besides it defining rules None and then i saved

i tried to edit in the defining rule still none and can't add any defining rule

the defining rule would be we permit web browser to access the intranet ip address

my problem is adding a rule in dynamically defined

regards

0 Helpful

jan.nielsen
Level 7
Level 7
In response to csco11029673

‎02-25-2009 12:28 AM

Here is your problem, once you create a class and put the radio button, when dynamically created, you have created a dynamic application class, this means that you have to create another rule that triggers putting your browser into that class, when the application tries to reach some ip addresses on say port 80/443, so what you do is, you create a network access rule, change action to add process to application class, choose your newly created application class name, and then select when csa should put the browser into that class.

0 Helpful

RichardSW
Level 1
Level 1

‎04-09-2009 03:04 PM

If you actually accomplished this using CSA, then you would prevent the user from being able to read the PDFs at all. If you open a PDF in a browser, it still has to be cached to the drive before its viewed.

Your best defense in this case is not CSA, but a combination of NTFS permissions and IP restrictions on the Intranet server.

0 Helpful
Customers Also Viewed These Support Documents