You are here: Products > Guardian > About the Guardian Menu > Guardian > HTTPS inspection > Manage policies

Managing HTTPS Inspection Policies

Note: This topic applies to the Leeds Release.

HTTPS inspection policies enable you to inspect and manage communication between users on your network and web sites which use HTTPS by configuring an inspection method for different user groups, destinations and locations.

Guardian processes HTTPS inspection policies in order of priority as listed on the Guardian > HTTPS inspection > Manage policies page, from top to bottom, until a match is found. You can change the order by dragging and dropping policies in new positions.

Guardian comes with three pre-configured HTTPS inspection policies which handle the following content:

Online banking – when enabled, this policy allows users to do online banking without communications being decrypted and inspected
All encrypted content accessed by unauthenticated IPs – when enabled, this policy decrypts and inspects all encrypted content that users at unauthenticated IPs try to access
Certificate validation – enabled by default, this policy check secure certificates on web sites. Any sites whose certificates are self-signed, out of date or otherwise invalid will be blocked.