Getting Started Guide
...
Configuring Kron PAM HTTP Prox...
Configuring HTTP Policy
2 min
http policies define which web pages are permitted or denied there is also a filtration for the http logs the main url is configured in the previous section this section is only for configuring the http policy to allow or deny the pages under the main url for example, if the main url is “http //facebook com,” policies are only applicable for http //facebook com and its sub urls to configure http policies in kron pam navigate to policy control > session policy open the http policy tab create an http policy by filling in the fields as described below field description description enter the description of the web page the description is only a name to distinguish the web page type allow allowed sub urls of the main url need to be configured as allow deny if there is a permitted main url and an admin wants to deny a related sub url, the sub url needs to be configured as deny filter log to filter the http logs defined in this field this is a tool to avoid unnecessary logs multiple policies it is possible to apply more than one http policy to a web page in this scenario, http proxy checks the deny criteria first if the requested web page matches the deny criteria, http proxy denies the web page; otherwise, it checks for the allow criteria if the requested page matches the allow criteria, http proxy allows the web page; otherwise, http proxy denies the web page logging all denied criteria are logged indisputably as for the allowed criteria, http proxy checks if it is configured in the filter log if not, the allowed logs are stored as well url to deny specific sub urls under the main url, admins must specify these sub urls here the url can be a) exact , b) contains , c) regex and, d) is empty admins can select a) exact if url can be entered as is b) contains to restrict all urls which contain specific words c) regex to define urls by regex d) is empty if the sub url is empty even if the main url is configured as a device in the previous section, it should be allowed in the http policy as well generally, regex is used to allow the main url and all sub urls another policy can be defined to deny the sub urls that should be denied header name a sub webpage can be restricted by the header the header name needs to be added here and the keywords should be defined in the header field header the header option is used if an admin user wants to restrict the web page with a keyword in the header the header name of the keyword should be configured in the header name field it can be selected as a) exact , b) contains , c) regex and, d) is empty content web pages can also be denied for a word in the web page content it can be selected as a) exact , b) contains , c) regex and, d) is empty