Web Content Filter
With an increased number of threats, attacks, scams across the internet, it is the foremost task of the IT admin to establish a protected workspace. Managing web content of your corporate mac devices is made simple with MDM. You can manage your web traffic by configuring a third party plug-in a web content filter profile and apply to your devices.
|Filter name||Provide a name for your plug-in.|
|Plugin bundle id||Fill the plugin bundle id and not the app bundle id.
|Filter type||Choose the type of the filter as socket if you wanted to manage the application traffic or choose packet if you want to manage the network packet traffic.|
|Socket Bundle identifier||Enter the bundle identifier of the socket.
Ex: identifier "com.crowdstrike.falcon.Agent"
|Socket Designated identifier||Enter the designated identifier of the socket.
Ex: identifier "com.crowdstrike.falcon.Agent" and anchor apple generic and certificate 1[field.1.2.840.113622.214.171.124.6] and certificate leaf[field.1.2.840.1136126.96.36.199.13] and certificate leaf[subject.011] = "X9E956P446"
|Packet Bundle identifier||Enter the bundle identifier of the packet.
|Packet Designated identifier||Enter the designated identifier of the packet.
Ex: anchor apple generic and identifier "com.checkpoint.fw.filter" and (certificate leaf[field.1.2.840.1136188.8.131.52.9] / exists */ or certificate 1[field.1.2.840.1136184.108.40.206.6] / exists / and certificate leaf [field.1.2.840.1136220.127.116.11.13] / exists */ and certificate leaf[subject.OU] = TZ3UEPFYKD)
|Filter grade||Choose the filter grade as firewall, if you wanted to filter the network level traffic or else choose inspect if you wanted the filter grade something below network level.|
|Filter webkit||If you choose to filter webkit, you can manage the browser traffic.|
|Vendor configuration||There might be certain additional functions offered by the vendors to manage the web content. Contact the web content filter vendor to know what functions can be performed.|
Note: There are some advanced settings which are optional and can be enabled when specified by the vendor.