So I am faced with a management request that I am not sure how to fulfill. We have just implemented MWG, and we have 2 categories of restricted sites: "black" categories which get a hard block, these are porn, viruses, etc - sites that there is no possible legitimate reason to use, and then we have "grey" categories, those that likely are not business related, but depending on the department or user, possibly could be work related, sites we want to "soft" block.
The goal is this: if a user hits a site that is in a grey category, they will get a block page that gives them the ability to input a business reason to access the site and then bypass the block, this in turn will send an email (basically like the site review page) and allow them to access the site.
The issue I am running into, is how to actually allow the bypass, for a couple of reasons. Obviously we don’t want to have the block page appear for every click on that site, that could become very intrusive for the end-user, not to mention it could generate an enormous number of emails to the HelpDesk. (For example they hit a site where they are researching something for legitimate business and need to view 20 different pages on that site, it would be very intrusive to have to input a business reason for every click on the site) I was able to accomplish the soft block with the built-in rule set for authorized override, but this presented another issue. I tested this with the alcohol category, since we are a retail establishment that carries alcohol, a user could need to access a site in that category.
I went to http://www.absolut.com and was prompted with the auth override page, clicked past, and was able to browse the site - perfect. However, then I went to http://www.jackdaniels.com and did not hot a block page, since the auth override timeout had not been exceeded - this is my main issue. I don’t want to allow the entire category, or worse all categories that we soft block in the authorized override, which is what would happen using the built-in rule set.
Ideally I would like to be able to do something similar to the following, but I am unsure how to accomplish it:
1 - If URL in category list (Black sites) => block no bypass
2 - If URL in URL list (under review sites) => allow (stop set)
3 - If URL in category list (grey sites) => block with bypass - if user inputs a business reason, allow bypass and add url to list 'under review sites' from rule 2
If this isn’t possible, then adjusting the duration of the bypass time to be based on the URL not the category would be the second choice.