topic Re: Blocking Facebook apps without ssl policy in General Topics

Blocking Facebook apps without ssl policy

awarsame — Thu, 05 Feb 2015 14:19:26 GMT

We are trying to let users to have read-only access to Facebook' but not allow them do posting or download anything from it. We don't have SSL policy. Can you block Facebook posting with you SSL policy decrypt traffic?

Thank you

Re: Blocking Facebook apps without ssl policy

ssharma — Thu, 05 Feb 2015 14:28:24 GMT

HI awarsame ,

You will need ssl decryption on the device to allow or deny specific child application of parent application (facebook in this case). Hope this helps. Thank you.

Re: Blocking Facebook apps without ssl policy

Dz3015 — Thu, 05 Feb 2015 14:35:06 GMT

As ssharma says, if you don't decrypt the session you will only see the hostname of the session and not the full URL so the PA will not be able to determine read vs post.