Dear sophos gurus,
I have one question which has been bugging me for last few days. I'm trying to set up a proxy in a quite unusal way, I just need to clarify if it is supported or not.
Imagine we have multiple Profiles bound to different AD groups. Situation is following:
1st profile allows to use the generic internet (without nudity, cloud, enterpreneurship, violence, ... categories).
2nd profile allows to use cloud services. This profile is bound to different AD group.
Imagine we have a generic internet user who is member of the AD group bound to 1st category. In some point of time, we'd like to allow him to use cloud services. If we add him to the AD group bound to 2nd profile, it doesn't work, because 1st profile is evaluated, match is found and user's request is dropped. If we revert the order of the profiles, user is able to access cloud websites, but regular internet is unaccessible.
My question is: is there any possibility to force the UTM Sophos to evaluate all the rules or we have to duplicate the setup in each profile in order to achieve desired behavior?
Thank you in advance and I wish you nice rest of the weekend.
This thread was automatically locked due to age.
