URL Filtering reports give you a view of web activity in a 24-hour
For everything that you do not allow or block, use risk categories to
write simple policy based on website safety. PAN-DB categorizes
every URL with a risk-level (high, medium, and low). While high
and medium-risk sites are not confirmed malicious, they are closely
associated with malicious sites. For example, they might be on the
same domain as malicious sites or maybe they hosted malicious content
until only very recently.
You can take precautionary measures
to limit your users’ interaction high-risk sites especially, as
there might be some cases where you want to give your users access
to sites that might also present safety concerns (for example, you
might want to allow your developers to use developer blogs for research,
yet blogs are a category known to commonly host malware).
Pair URL filtering with User-ID to control web
access based on organization or department and to block corporate
credential submissions to unsanctioned sites:
filtering prevents credential theft by detecting
corporate credential submissions to sites based on the site category.
Block users from submitting credentials to malicious and untrusted sites,
warn users against entering corporate credentials on unknown sites
or reusing corporate credentials on non-corporate sites, and explicitly
allow users to submit credentials to corporate sites.
Add or update a Security policy rule with the passive URL
Access Management profile so that it applies to a department user
group, for example, Marketing or Engineering. Monitor
the department activity, and get feedback from department members
to understand the web resources that are essential to the work they