The user will see a response page indicating
that a password is required to allow access to websites in the given
category. With this option, the security admin or helpdesk person
would provide a password granting temporary access to all websites
in the given category. A log entry is generated in the URL filtering
log. See Allow
Password Access to Certain Sites. In earlier release
versions, URL Filtering category overrides had priority enforcement
ahead of custom URL categories. As part of the upgrade to PAN-OS
9.0, URL category overrides are converted to custom URL categories,
and no longer receive priority enforcement over other custom URL
categories. Instead of the action you defined for the category override
in previous release versions, the new custom URL category is enforced
by the Security policy rule with the strictest URL Filtering profile action.
From most strict to least strict, possible URL Filtering profile actions
are: block, override, continue, alert, and allow. This means
that, if you had URL category overrides with the action allow, there’s
a possibility the overrides might be blocked after they are converted
to custom URL category in PAN-OS 9.0.
The Override page
doesn’t display properly on client systems configured to use a proxy
server.
|