To stay updated on your favorite discussions, please create an account or log in. Then, click the Bookmark icon to subscribe and receive notifications.

Browsing Protection by F-secure (Client Security) - deployment and policies

alsimmo
alsimmo Posts: 37 Security Scout
in Business Suite
Spoiler

Hi All,

 

I've like to deploy Client Security 13.10 and realise that the add-in is deployed when Client Security 13.10 is pushed/deployed to a machine.  I understand that there is no way to stop the deployment.

 

OK, stupid question time.  If  browsing protection is disabled the add-in will just be dormant and in-active?

 

If we have no plans to use the browsing protection can the add-in be disabled via group policy or some other means?

 

Thanks in advance.

 

Al

Comments

  • Vad
    Vad Posts: 1,069 Cybercrime Crusader

    Hello Al,

     

    > If  browsing protection is disabled the add-in will just be dormant and in-active?

     

    Browser extension will keep on sending queries about traffic to Online Safety content filter, but if Browsing Protection/Web Traffic Scanning are disabled, nothing will be blocked or checked there, so user won't see any activity from our product. There is just some http traffic between browser extension and localhost.

     

    > If we have no plans to use the browsing protection can the add-in be disabled via group policy or some other means?

     

    Maybe, it's possible to disable add-in of IE via group policy, but, most likely, it's not possible for Chrome and/or Firefox. Unfortunately, the only workaround is to disable extensions locally on user machines.

     

    Best regards,

    Vad

  • alsimmo
    alsimmo Posts: 37 Security Scout

    Hi Vad,

     

    Thanks for your response.

     

    We'll look to disable the add-in via group policy.  Most users use IE so this should resolve the issue.

     

    It's great that F-Secure are incorporating more features in the core product but is there any plans to make the add-in optional before installation?

     

    Regards,

    Al

  • RmB
    RmB Posts: 23 Junior Protector

    Hi

    Actually it is pretty much easy to disable Browsing protection add-on in IE through GPO. All you have to do is find add-on class ID. You can find it IE->Tools->Manage add-ons. Then just choose add-on which you want to disable and click "more information". Pop up window show you more details about add-on. There you can find class id. Just copy ID and paste it to notepad or wordpad or whatever...

     

    After that, create new GPO.  

     

    Navigate to Computer Configuration\Policies\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management or User Configuration\Policies\Administrative Templates\Windows Components\Internet Explorer\Security Features\Add-on Management.

    Open Add-on List, select Enable, select Show.
    On Show Contents, select Add. For Value Name use Class ID and for Value use 0.

    Quick description for Value:

    • 0 - The add-on is disabled, and users cannot manage the add-on from the user interface.
    • 1 - The add-on is enabled, and users cannot manage the add-on from the user interface.
    • 2 - The add-on is enabled, and users can manage the add-on from the user interface.

    Click OK and again OK. Close all windows.

     

    Open CMD and type gpupdate /force. 

     

    Now add-on is disabled.

     

    It is also possible to disable Chrome add-on pretty much same way.

     

    BR,

    Markus T

This discussion has been closed.

Categories