Company logoHelp Center
Visit www.threatlocker.com

Creating a Secure Network Policy - Access to Website Category

3 min. readlast update: 03.20.2026

Log in to the ThreatLocker Portal.

Navigate to the Network Control section and select Network Control Policies.

Select the 'New Policy' button in the top left corner.

The Create Secure Network Policy window will open, where you can select which type of policy to create.

Select 'Access to Website Category (e.g., Social Media) to create policies that control organizational devices' access to websites based on categories.

The Access to Website Category (e.g., Social Media) wizard will open.

1. In the Select Website Category field:

  • Click Select a service.
  • Scroll the list or type to search for the desired website category (for example, Social Media, Streaming, etc.).

Please Note: Web Control Policies are required for this field to populate with the appropriate website categories.

  • Click the desired website category.
  • The selected category will appear in the Select Website Category field.

2. Once a category is selected, if you wish to set an expiry for the policy,

  • Check the Expiration checkbox.
  • Set the expiration date/time.

To allow this policy without expiry, leave the 'Expiration' checkbox unchecked.

3. To restrict when the policy is active:

  • Check the Schedule checkbox.
  • Configure allowed days and time ranges as required.

To allow this policy to be active all the time, leave the 'Schedule' checkbox unchecked.

4. In the Add Organization Devices field, your Organizations, Computer Groups, Computers, and Mobile Devices will be listed.

In the dropdown, click or search for the appropriate options. More than one can be selected.

All selected items will be shown in Add Organization Devices.

These devices will be allowed to access the selected website category under this policy.

 

5. In the Local Users and Groups section:

  • By default, 'Everyone' is selected.
  • To scope access:
    • Click in the Local Users and Groups field.
    • Type the appropriate local users or groups for this device/policy.
  • Only the selected users/groups will be allowed to access the selected website category.

6. In the Authorized Local Apps field:

  • By default, 'All Applications' is selected.
  • To restrict which local applications can access the selected website category:
    • Click the Authorized Local Apps field.
    • Type the name of the application.
    • Choose the desired application(s) from the list.
  • For most deployments, leaving 'All Applications' selected is sufficient.

Once all fields are configured, click 'Next' to open the Secure Network Policy Summary window.

By default, the policy action will be set to permit. Select the deny icon to change this to a deny policy.

Review all other information, add a description if desired, and then click the blue Create button to add this policy to your policy list.

Zero Trust Network Access (ZTNA) and Zero Trust Cloud Access (ZTCA) Frequently Asked Questions

Was this article helpful?