Blocking access to unwanted cloud services

You can block access to cloud services that you do not want users to access. You can also allow access to cloud services that were previously blocked.

The blocking capability is available only if you activated Kaspersky Endpoint Security Cloud under a Kaspersky Endpoint Security Cloud Plus or Pro license.

The blocking capability is available only if you use Kaspersky Endpoint Security 11.2 for Windows or later. Earlier versions of the security application only allow you to monitor the use of cloud services.

We recommend that you use Kaspersky Endpoint Security 11.7 for Windows or later to use the blocking capability. Otherwise, the list of cloud services that you can allow or block might differ from the list of cloud services that Kaspersky Endpoint Security for Windows detects.

Among other considerations, you may want to take the risk level into account when deciding whether to block access to a certain service.

You can block or allow access to cloud services from the Cloud Discovery widget or in the settings of a security profile.

To block or allow access to a cloud service from the Cloud Discovery widget:

  1. Open the Cloud Discovery widget and select the required cloud service.
  2. In the TOP 10 service users pane, find the user or the security profile for which you want to block or allow the service.
  3. On the required line, in the Access column, do any of the following:
    • To block the service, select Block the service in the profile in the drop-down list.
    • To allow the service, select Allow the service in the profile in the drop-down list.

Access to the selected service is blocked or allowed in the settings of the selected security profile.

To block or allow access to cloud services in a security profile:

  1. Open Kaspersky Endpoint Security Cloud Management Console.
  2. Select the Security managementSecurity profiles section.

    The Security profiles section contains a list of security profiles configured in Kaspersky Endpoint Security Cloud.

  3. In the list, select the security profile for the devices on which you want to configure Cloud Discovery.
  4. Click the link with the profile name to open the security profile properties window.

    The security profile properties window displays settings available for all devices.

  5. In the Cloud security group, select the Cloud Discovery section.
  6. Do any of the following:
    • If you want to block access to an individual cloud service, select Block in the drop-down list next to the required service.
    • If you want to allow access to an individual cloud service, select Allow in the drop-down list next to the required service.
    • If you want to block access to all cloud services in a certain category, click the Block entire category button next to the name of the required category.
    • If you want to allow access to all cloud services in a certain category, click the Allow entire category button next to the name of the required category.
  7. Click the Save button to save the changes.

Access to the selected services is blocked or allowed.

If you block access to a category of cloud services, all new services that appear in this category will also be blocked.
If you allow access to at least one service in a category, all new services that appear in this category will also be allowed.

Page top