Configuring Web Control message templates

Depending on the action specified in the properties of Web Control rules, when users attempt to access web resources, the application displays one of the following types of messages (by replacing the HTTP server response with an HTML page containing a message):

• Warning. This type of message warns the user that visiting the web resource is undesirable and/or violates the corporate security policy. The application displays a warning message if the Inform action is selected in the settings of the rule that matches this web resource.

  If the user believes the warning is a mistake, a link in the warning lets the user send an automatically-generated complaint message to the company's LAN administrator.

• Blocked web resource message The application displays a message that the web resource has been blocked (see the figure below) if the Block action is selected in the settings of the rule that matches this web resource.

  If the user believes the web resource should not be blocked, a link in the blocked web resource message lets the user send an automatically-generated complaint to the company's LAN administrator.

Templates are provided for warning messages, blocked web resource messages, and complaint messages to the company's LAN administrator. You can edit their content.

To change a message template in the Web Console:

1. In the main window of the Web Console, select Assets (Devices) → Policies and policy profiles.

   The list of policies opens.

2. Select the administration group containing the devices to which the policy is applied. To do so, click the link in the Current path field in the upper part of the window and select the administration group in the window that opens.

   The list displays the policies configured for the selected administration group.

3. Click the name of the required policy in the list.

   The policy properties window opens.

4. In the policy properties window, select Application settings → Security Controls → Web Control.
5. In the Templates section, configure the Web Control message templates on the following tabs:
   • Warning. The input field contains the template for the message that appears when a rule is triggered that warns about an attempt to access an undesirable web resource.
   • Block message. The input field contains the template for the message that appears when a rule is triggered that blocks access to a web resource.
   • Message to administrator. The input field contains the template for a complaint to be sent to the administrator of the corporate LAN when the user believes that a blocked web resource should not be blocked. After a user requests access, Kaspersky Endpoint Security sends a Message to the administrator about denied access to a web page event to Kaspersky Security Center. The event description contains the message to the administrator with the variables replaced by their values. If no Kaspersky Security Center solution is deployed in your organization or there is no connection with the Administration Server, the application will send a message to the administrator's specified email address.

   On the Warning and Block message tabs, you can add variables and links to the messages for the user by using the Add variable and Add link buttons. You can restore the text of the message template by clicking the Default button.

6. Click OK.
7. Click the Save button to save the changes made.

To change a message template in the Administration Console:

1. In the Managed devices folder in the Administration Console tree, open the folder with the name of the administration group to which the required devices belong.
2. In the workspace, select the Policies tab.
3. In the list of policies, select the required policy and double-click it to open the Properties: <Policy name> window.

   You can also open the policy properties window by using the Properties item in the policy context menu or by clicking the Configure policy settings link located to the right of the list of policies in the section with the policy settings.

4. In the policy window, select Security Controls → Web Control.
5. In the Message templates section, click the Configure button.
6. This opens the Message templates window; in that window, configure the Web Control message templates on the following tabs:
   • Warning. The input field contains the template for the message that appears when a rule is triggered that warns about an attempt to access an undesirable web resource.
   • Block message. The input field contains the template for the message that appears when a rule is triggered that blocks access to a web resource.
   • Complaint to administrator. The input field contains the template for a complaint to be sent to the administrator of the corporate LAN when the user believes that a blocked web resource should not be blocked. After a user requests access, Kaspersky Endpoint Security sends a Message to the administrator about denied access to a web page event to Kaspersky Security Center. The event description contains the message to the administrator with the variables replaced by their values. You can view these events in the Kaspersky Security Center console using the User requests selection. If no Kaspersky Security Center solution is deployed in your organization or there is no connection with the Administration Server, the application will send a message to the administrator's specified email address.

   On the Warning and Block message tabs, you can add variables and links to the messages for the user by using the Variable and Insert link buttons. You can restore the text of the message template by clicking the Default button.

7. Click OK.
8. Click Apply.