Blocking specific website via Active Directory

1110 pts.
Active Directory
Active Directory Administration
Active Directory security
Blocking websites
Domain Administration
Can I block specific websites on our domain via active directory?

Answer Wiki

Thanks. We'll let you know when a new response is added.

No, but if you use a global anti-virus such as nortons that would be the way to do it.


For ur kind information, AD cannot be used as a proxy filter.
IPSEC / Firewall blocking – This is the most pervasive blocking usually perform. IPSEC filtering may deploy via GPO to individual computers / may be deployed to the network’s internet gateway for blocking. To block a specific site, a generic policy only requires knowledge of the particular site’s IP address and a broad rule can set as block/deny all traffic with this address. While IPSEC operates at the operating system level, most routers have internal firewalls. If u cannot ping them, then the IP’s are being filtered or even if u can ping, but can not browse then it is a good indication that a narrow rule has been set restricting the protocol/port.
U may also use IE > Internet Options for the same purpose.

Discuss This Question: 4  Replies

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.
  • jinteik
    why not use proxy... actually u can block using AD, but u need to create a group in teh Proxy then link with the AD....
    18,995 pointsBadges:
  • Koohiisan
    I believe the paid version of Untangle gateway allows you to link your Internet restrictions and filtering to specific AD accounts.
    5,045 pointsBadges:
  • Koohiisan
    As Jinteik stated, you can create and link a GPO to your organization in order to block sites. and set a proxy manually under: User Settings / Internet Explorer Maintenance / Connection/Proxy Settings . You specify a phony proxy, which will eat every request so all pages fail, and then specify the exceptions (sites you want to not block). We use this on a kiosk computer to only allow 7 or 8 sites as permissible, so I can vouch that this works. But, this is only useful if you want to block just about everything and allow only certain sites.
    5,045 pointsBadges:
  • The Most-Watched IT Questions: April 26, 2011 - ITKE Community Blog
    [...] 9. Rechil, RamseyB, Jinteik, and Koohiisan gave suggestions for blocking specific websites via Active Directory. [...]
    0 pointsBadges:

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

Thanks! We'll email you when relevant content is added and updated.


Share this item with your network: