Blocking Internet Access for a User Group with an ATP700
Hello everyone,
I would like to know if an ATP700 firewall is capable of blocking internet access for an Active Directory user group. Specifically, I want to remove internet access for administrator accounts.
If it is possible, how can I configure the security rule? My firewall is properly connected to LDAP and correctly recognizes the group in question, but I’m unsure about the next steps…
Thank you in advance for your help!
All Replies
-
Because you have Active Directory available to you, what you might want to consider is to deploy custom Windows Firewall rules using Group Policy which blocks your internal subnets from communicating with external subnets and apply it only to the administrator accounts at login.
Example of how to configure the firewall rule:
Example of how to deploy the rule using GPO's:
I realize that does not answer your question in the way you'd asked it but I believe it will give you the results you want with better overall control.
0 -
Woops, sorry forgot the last link which shows how to deploy it with GPO's. Here you go:
https://www.blumira.com/blog/windows-firewall-with-gpos
0 -
Hello,
Thank you for your contribution.
The Windows firewall is managed by the antivirus, but it does not allow for the implementation of group policies affecting AD users.0
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight