The user will see a response page indicating
that a password is required to allow access to websites in the given category.
With this option, the security admin or help desk person would provide
a password granting temporary access to all websites in the given
category. A log entry is generated in the URL filtering log. See Allow Password Access to Certain Sites. In
earlier release versions, URL Filtering category overrides had priority
enforcement ahead of custom URL categories. As part of the upgrade
to PAN-OS 9.0, URL category overrides are converted to custom URL
categories, and no longer receive priority enforcement over other
custom URL categories. Instead of the action you defined for the
category override in previous release versions, the new custom URL
category is enforced by the Security policy rule with the strictest
URL Filtering profile action. From most strict to least strict,
possible URL Filtering profile actions are: block, override, continue,
alert, and allow. This means that, if you had URL category
overrides with the action allow, there’s a possibility the overrides
might be blocked after they are converted to custom URL category
in PAN-OS 9.0.
The Override page doesn’t display properly
on client systems configured to use a proxy server.
|