Block Web portals through Group Policy
I am trying to block my users from going to all but a few web sites in Group Policy.
We are running Win 2003 and XP pro.
I have created a policy that puts all the web portals I want people to be able to go to in trusted sites, and I would like to prevent them from going to anywhere but their trusted sites.
To add some more. I would like to go direct to the internet and not use a proxy or 3rd party software.
Any ideas?
We are running Win 2003 and XP pro.
I have created a policy that puts all the web portals I want people to be able to go to in trusted sites, and I would like to prevent them from going to anywhere but their trusted sites.
To add some more. I would like to go direct to the internet and not use a proxy or 3rd party software.
Any ideas?
Last Comment
ASKER
The sites I am allowing should be trusted site anyway so I am not worried about the extra privillages. I have not found a way to only allow the trusted sites and block everything else. In general I agree with you, but in this situation I think it will be OK from a security standpoint.
ASKER
I figured out a way to do this.
It is a proxy solution where you send everything to a false proxy (I just choose an unused IP address, or someone you really don't like). Then put all the websites you want to work in the do not use proxy for these.
In Group Policy :
User Configuration / windows settings / Internet Explorer Maintaince / Connection / Proxy settings
I set port http and https to use the proxy
in the same area, I configured the exceptions to be the web sites I want people to get to.
I was able to use wildcards so I could allow an entire domain.
This will only work if you have a limited number of web pages you want to allow. This worked great for us because my users only need about 12 site to be able to do their jobs.
It is a proxy solution where you send everything to a false proxy (I just choose an unused IP address, or someone you really don't like). Then put all the websites you want to work in the do not use proxy for these.
In Group Policy :
User Configuration / windows settings / Internet Explorer Maintaince / Connection / Proxy settings
I set port http and https to use the proxy
in the same area, I configured the exceptions to be the web sites I want people to get to.
I was able to use wildcards so I could allow an entire domain.
This will only work if you have a limited number of web pages you want to allow. This worked great for us because my users only need about 12 site to be able to do their jobs.
ASKER CERTIFIED SOLUTION
THIS SOLUTION IS ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
Windows Server 2003
Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).
129K
Questions
--
Followers
--
Top Experts
Get a personalized solution from industry experts
TRUSTED BY
If you really want to do this bite the bullet and spend a little of your hard-earned on a decent proxy sever such as Microsoft ISA server,