ISO/IEC 27001 Control 8.23: Web filtering
Control
Access to external websites should be managed to reduce exposure to malicious content.
Necessity of MidPoint
MidPoint's contribution to implementation of this control is marginal.
Implementation of the control is mostly outside the scope of identity governance and administration (IGA), therefore midPoint cannot provide significant advantage. However, midPoint can still provide minor supporting information and functionality.
Implementation Overview
MidPoint provides minor supporting functionality for web filtering.
Implementation Details
MidPoint can manage administrative access to web filtering tools, using its role-based access control (RBAC) mechanism. Also, midPoint can manage exceptions to mandatory web filtering, in a form of RBAC roles.
Rationale
Web filtering is mostly outside of reach for midPoint. However midPoint can still provide some supporting functionality.