Grant specific users or groups access to an AUP category
Before you begin
Complete this procedure to define access in an acceptable use policy (AUP) to specific users or groups. When you set the AUP category to block, you can define the list of users or groups that are exempt from the block action.
In the navigation menu, select
.Note: If you are trying the new Enterprise Center interface, in the navigation menu, select .
- Go to the policy where you want to grant specific users or groups access to a blocked AUP category.
- Click the edit icon.
- Click the Access Control tab.
Go to the Acceptable Use Policy tab.
Note: If you are participating in the application visibility and control (AVC) beta, you define AUP as part of an AVC configuration. Categories are available in the AUP and Shadow IT tab. For instructions, see Configure application visibility and control.
- Go to the blocked category that you want only specific users to access.
To associate groups:
- Click the link icon associated with the Groups area.
Enter the group name. As
you enter a group name, a list of groups appears in a drop-down list.
This includes imported groups, organizational units (OUs), and any
overlay groups that were added to ETP.
If the group name you provide does not appear in the drop-down list, you can add the group. If you add a group, you must also add the group to the relevant directory for the group to authenticate and gain access.
- Select the group or group from the list.
- Click Associate.
To associate users:
- Click the users icon.
- In the search field, enter the user’s unique user ID, and click Search User.
If the user does not
exist in the directory associated with the policy identity provider, you
can enter a unique ID for a user you want to add and click Add User.
This adds the unique ID to the list. You must also add the user to the
relevant directory for the user to authenticate and gain access. The
user ID that’s provided here is the ID that the user enters to
If you need to find a user ID to enter into this field, you can filter activity in the Proxy Activity report () by User ID.
- Select the user that you want to be an exception to the block.
- Click Associate
- Click Save.
Deploy configuration changes