# Web Isolation

## Table of contents

- [About Web Isolation](https://www.manageengine.com/products/desktop-central/help/browser-security/web-isolation.html#about)
- [Working of Web Isolation](https://www.manageengine.com/products/desktop-central/help/browser-security/web-isolation.html#working)
- [Implementing Web Isolation](https://www.manageengine.com/products/desktop-central/help/browser-security/web-isolation.html#implement)

## About Web Isolation

Browsers are essential for businesses today, but they also expose organizations to online threats. Web Isolation provides a critical layer of protection by creating a virtualized browsing environment that isolates malicious content from user devices. This reduces the risk of malware infections and data breaches.

## Working of Web Isolation

Web isolation uses two primary methods to protect users: virtualization and sandboxing. This prevents malicious content from reaching your device. It's like a quarantined area for websites, where everything is wiped clean after browsing leaving no trace of potential threats. Additionally, it protects user privacy by isolating certain websites and preventing the storage of cache, image files, and cookies on the local machine.

Endpoint Central's Web Isolation protects devices from malware and data breaches by segregating personal and business websites. It isolates malicious websites in a virtual environment, preventing them from infecting devices or accessing sensitive data. When a user visits a malicious website, web isolation prevents the malware from infecting their device. This policy is applicable to Microsoft Internet Explorer and Edge on Windows 10 Enterprise Edition version 1709 and later.

## Implementing Web Isolation

Kindly follow the steps given below to successfully create and deploy the Web Isolation policy:

1. Open Endpoint Central console and navigate to **Browsers -> Policies -> Web Isolation**.
2. Click **Create Policy**.
3. Give a name for the policy.
4. Enter the web-applications or the websites group that you wish to be opened separately.
5. Click **Allow** for **Data persistence between sessions** to retain the site data across different browsing sessions.
6. Click **Allow** for **iFrame Restriction** to limit or prevent the websites from embedding content from other sources within their pages using iFrames.
7. Click **Save & Publish** to save the policy.
8. [Associate](https://www.manageengine.com/products/desktop-central/help/browser-security/policy-deployment.html#deploy) the policy to computers/groups of computers in which you want the isolation of web-applications to take place.

[![Web Isolation](https://www.manageengine.com/products/desktop-central/help/images/web-isolation.png)](https://www.manageengine.com/products/desktop-central/help/images/web-isolation.png)

If you have any further questions, please refer to our [Frequently Asked Questions](https://www.manageengine.com/products/desktop-central/help/browser-security/browser-faq.html#restrictfaq) section for more information.