Hello all. I'm a newb here. Just starting to roll out Endpoint Security to our users, replacing Kaspersky. We run Sophos UTM at our site, on which we've established our web control policies, exceptions, etc. I've configured our Enterprise Console Web Control policies for Full Web Control, pointing to our UTM. We control which web policy a user gets via security group membership in Active Directory. I hope that's enough background.
Now the weird part. It seems like something in the web control component of Endpoint Security client is overriding the web policy a user would normally fall under via the UTM/AD security group scenario. Case in point - As a member of IT, I fall under a pretty wide-open web control policy. If I go to something like Teamviewer.com and try to download their client software, download.teamviewer.com/.../TeamViewer_Setup_en-ken.exe, it gets blocked for the following reason: "The URL you have requested matches a forbidden file extension". I would normally be able to download that EXE file. If I then go to my Endpoint Security client software and disable Web Control, I can download the EXE file with no problem. As a test, I then try to go to a link that I know for certain is blocked for everyone, playboy.com. Nope can't get to it, and I get the appropriate error notice in my browser that it's forbidden. So I know that the UTM web control policies are working as they should even though I have web control disabled in my Endpoint Security client.
This is causing problems for folks who normally need to download EXE files and such for the normal course of their work. Does anyone here have an idea what may be going on? Does the Endpoint software only use a subset of a UTM's web control policy?
Thanks for any help,
Mike
This thread was automatically locked due to age.