Configuring a private access policy for SWG users
To configure a private access policy from SWG users to SPA hubs:
- Go to Configuration > SWG Policies.
- Click the Private Access tab and then click the To hubs subtab.
- Click +Create to create a new policy.
- Configure these fields:
Field
Value
Name Enter a unique private access policy name. Source Scope - All: all HTTP and HTTPS traffic from SWG users
- Specify: specify selected hosts and host groups
User
- All Secure Web Gateway Users: All SWG users
- Specify: specify selected users or users groups
Destination - Private Access Traffic: all private access traffic
- Specify: specify selected private access hosts or host groups
Action Accept or Deny Profile Group Default or Specify and select a profile group. Force Certificate Inspection Enabled or disabled.
When enabled, this policy ignores the SSL inspection mode defined in the selected profile group and instead uses certificate inspection.
Status Enable or disable. Log Allowed Traffic Enable or disable.
- Security Events: log traffic that has a security profile applied to it.
- All Sessions: log all sessions that this policy accepts or denies.
- Click OK.