Showing results for 
Search instead for 
Did you mean: 
Level 9
Report Inappropriate Content
Message 1 of 2

WG - block users from an AD OU


Is it possible to block the user web access by an AD OU object (not group a membership) with the Web Gateway?
I mean all of the domain users can access the internet except the users in the defined OU.


1 Reply
McAfee Employee aloksard
McAfee Employee
Report Inappropriate Content
Message 2 of 2

Re: WG - block users from an AD OU

Hi Zoltan,

Hope you are doing well.

LDAP is the only way as far as I know which can help to achieve this requirement.

You can use any other authentication and then retrieve LDAP attributes using user name as the key using Authentication.GetUserGroups property.

e.g. NTLM -> user name is xyz -> Authentication.GetUserGroups(<AD LDAP Config>) -> list of OU objects



Alok Sarda

More McAfee Tools to Help You
  • Subscription Service Notification (SNS)
  • How-to: Endpoint Removal Tool
  • Support: Endpoint Security
  • eSupport: Policy Orchestrator