topic Re: Security Policy using URLs? in General Topics

Security Policy using URLs?

pasmartin — Wed, 21 Feb 2018 07:38:01 GMT

Hello community.

Let's say I have an Atlassian Confluence site that needs to be accessed by a user (or multiple) - is it possible to specify down to the URL to only give the user access to a given set of pages?

Confluence permissions only allow me to give access to entire spaces.

Could be advantageous to allow a general user not tied to a specific person to get access only to a list of URLs in many different spaces, for instance where you would have a consultant or something like that that needs to access some pages spread across the entire space directory.

Thanks!

Re: Security Policy using URLs?

Remo — Wed, 21 Feb 2018 09:44:55 GMT

Hi @pasmartin

You could create a custom URL category where you configure the URLs you want and then attach this custom URL category directly into the securitypolicy (not in an URL filtering profile). This way the rule allows specific access to the configured URLs.

Regarding the general user. It's a possibility with advantages and disadvantges, but in general it matters how the firewall gets the User-ID information. If you have a captive portal then is easily possible to have a generic user. But obviously you then have to give this one account to multiple users.

Re: Security Policy using URLs?

pasmartin — Wed, 28 Feb 2018 10:21:34 GMT

Will try that out, thanks!
Just waiting on a response on the change order first 🙂