hello
Dear a query, I want to block a Chrome extension however when I create an app control profile in the fortigate it is not successful.
Do two tests:
-
Create an App control profile blocking the Proxy category, however the user could access and download the chrome extension.
-
Create an app control profile blocking the proxy and the application as shown in the image but still, the user continued accessing.
Is fortigate possible to block chrome extension? I don’t know what the app control needs to do, could you please help me.
I attach an image of the created profile and the name of the chrome extension.
Do you know what kind of traffic the extension is using? If it’s HTTPS (or anything encrypted) you’ll need an TLS inspection profile with a properly configured certificate to properly see the traffic and block it.
While this may be possible to do, it might be very difficult unless the extension is sending traffic that has a distinctive signature.
I would honestly seek to enforce this at the endpoint level, myself. I would also do it by restricting extensions overall to only those that are appropriate and necessary for the users in your organization.
Think about it this way: you are looking to blacklist a particular extension. Chances are there are countless others out there that you don’t want installed. Instead, approach it by whitelisting the small amount of those that you do trust.
This would be much easier to do via Google Workspace admin. $6/m. Create a single account under Google Workspace. Setup Chrome policies. Enroll workstations via reg key, can push via GPO.
Block it on General interest, google store
Hello, the deep inspection ?
The deep inspection is not here right now, please leave a message at the tone.
I laughed way harder than I should have at this.