Web Access Control


Web Access Control allows an administrator to enforce time-of-day web access to groups or specific devices using web proxy. To enable Web Access Control features, the administrator would have to define the time for which the web access restrictions are to be imposed. The secondary level of configuration involves tagging a user group, IP Address, or a MAC Address with the applied time restrictions.


The Web Access Control application is installed by default and can be accessed from the left-hand navigation panel.


Left-hand Navigation Panel > Security Configuration>Web Filter > Web Access Control crystal-eye-xdr-web-access-control-navigation


The administrator can define time restrictions for a user group, IP address or a MAC address to access the web and the restrictions can be categorized to particular days of the week as well. The restricted time period can also be given a custom name which can be mapped later on with a user group, IP address or a MAC address.

How to Set Time of the Day Definitions?

Step 1: in the Web Access Control page, click the Add button under the Time of the Day Definitions sections. crystal-eye-xdr-time-definations1

Step 2: You will now be directed to Add Time Period page. Enter a suitable Name for the Time Period in the textbox. crystal-eye-xdr-time-definations2

Step 3: Select the Days of the Weeks. crystal-eye-xdr-time-definations3

Step 4: Select the Start Time from the dropdown. crystal-eye-xdr-time-definations4

Step 5: Select the End Time from the dropdown and click the Add button. crystal-eye-xdr-time-definations5

Note: You will now see the schedule listed in the Time of the Day Definitions section. crystal-eye-xdr-time-definations6


This section of the App enables the administrator to define various parameters related to the functionalities of the Web Access Control app such as whether to Allow or Deny access at a particular time interval. The Restrictions can also be further categorized as to whether the access is to be denied within the set time restrictions or out of it. The administrators can also easily Apply Access Control to Group, IP Address or MAC Address.

How to Apply Access Control to Group, IP Address or MAC Address?

Step 1: In the Web Access Control page, click the Add button under the Access Control List section. crystal-eye-xdr-web-access-control-acl1

Step 2: You will now see the Time-of-Day Access Control section. Assign a Name to the selected access control list. crystal-eye-xdr-web-access-control-acl2

Step 3: Select Allow or Deny which defines as to whether the User Group, IP Address or the MAC Address must be allowed or denied access to the web for the selected Time Period. crystal-eye-xdr-web-access-control-acl3

Step 4: Select the Time Period which was nicknamed in the Time of the Day Definitions. crystal-eye-xdr-web-access-control-acl4

Step 5: Select the Restriction type as Outside Time Restrictions or Within Time Restrictions. crystal-eye-xdr-web-access-control-acl5

Step 6: Select the Method of Identification from the dropdown. crystal-eye-xdr-web-access-control-acl6

Note: The Method of Identification can either be Group, IP Address or a Mac Address. It essentially defines whether the Time Period restrictions are for a Group, IP Address, or a MAC Address

Step 7: Based on the selected Method of Identification, select the User Group or enter the IP Address/Mac Address and click the Add button.