Skip to main content

Creating an SSL Bypass Policy for a church group

This is intended as internal but maybe could be public

Step 1 - Create Smart device group for Church Group if needed

  1. Navigate to any Company Access Policy Dashboard (this could be improved but it is the only way I know to be able to get where you need to go to create this group)

  2. In the right lefthand column click on Device Groups

    Screenshot 2023-05-11 123410.png

  3. Click Add Smart Device Group

  4. Fill out form

    • Name for device group
    • Leave Company field empty
    • Select correct Accountability Policy
    • Membership set to Collected Device Group

  5. Save

Step 2 - Create a custom ACL category

  1. In Draw Bridge console click Network Access in the left column Hotkey i 3

  2. Click Categories Hotkey 2 1

  3. Click Categories Hotkey 1 1

  4. Click ACL Categories Hotkey c 3

  5. Click Plus button in the upper right Hotkey Alt+N or Shift+Alt+N or Cmd+Shift+N

  6. Fill out Code and Name but leave Compnay field empty Description is optional

  7. Click Next

  8. Action will be ACL

  9. Click Next

  10. Chose Accountability policy you want this to apply to.

  11. Save

Step 3 - Build ACL for category

  • asuming step 3 follows step 2 directly
  1. Click ACL Actions tab Hotkey t 3
  2. Click ~Add ACL Action Hotkey p 1
  3. Set Action to SSL Bypass Request Level Override
  4. Click Next
  5. Set Acl to Connect Method Match if Equal Target ACL is left blank
  6. Click Next
  7. Enter correct device group Match if Equal (device group created in step 1.)
  8. Click Next 3 times Leave time group and App groups empty
  9. Category should be prefiled but click Match if Equal
  10. Save

Step 4 - Apply Category to Accountability Group Default Policy

  • (this may not be needed to make the category fire but it does make it easier to find and adjust in the future)
  1. Click Network Access in left column Hotkey i 3
  2. Click Web Page Access Hotkey 1 1
  3. Click Access Policy Groups Hotkey 1 2
  4. Search for and select Accountabilty group Default policyy you want to apply this to
  5. Select the Categories tab
  6. Select Add Category HotKey p 1
  7. Pick the category created in Step 2
  8. Set the Actrion to Whitelist
  9. Save

Step 5 - Adding sites to Custom Group ByPass

  1. Navigate to Access Policy Dashboard of a Company that the policy is applied to
  2. Select Filter Actions group of church default policy
  3. Find Bypass category in the list of categories
  4. Click on the Category name
  5. Click Add Pattern
  6. Fill out form to add site to bypassed list Make sure you chose Sync Everywhere
  7. Save

OR

If you want to add several patterns at the same tme you can use the Bulk Load Patterns button

Back to top