How can above be done? Don't want users to uncheck the proxy & then connect to
their phone's 4G or private Wifi to browse Internet without going thru our corporate
proxy (which gives a certain amount of protection) ?
Some users bring home their laptop so we don't want them to connect to their
home broadband to browse Internet but just to work offline: as there are cases
browsing the Net caused the laptop to be infected & then brought back to office
to connect to corporate network to further spread the infection (despite AV is
up to date).
Feasible to use GPO or local GPO