Targeted Threat Protection: Configuring URL Protection User Awareness

Document created by user.oxriBaJeN4 Employee on Apr 11, 2016Last modified by user.oxriBaJeN4 Employee on Oct 30, 2017
Version 7Show Document
  • View in full screen mode

URL Protect If User Awareness settings are enabled as part of a URL Protection definition, users can be redirected to a page providing information about the destination of the link they've clicked.

Here the user can decide if they want to proceed to the destination site, or abort the request. What happens next depends on:

  • The settings configured in the URL Protect definition.
  • Whether the URL is considered safe, or harmful.
  • What action the user chooses when presented with the user awareness prompts.

A URL Protect Dashboard is available in the Administration Console, which displays a graphical summary of all user awareness activity. Here, you can monitor user awareness, and perform actions on the data displayed. See the URL Protection Dashboard page for more information.

 

You can also customize the User Awareness Challenge messages, to create a more personalized and interactive experience for users. See the "Configuring Custom Page Sets" section below for further details.

 

User Awareness Check Frequency

 

The frequency that users are redirected to a user awareness prompt is controlled by the "User Awareness Challenge Percentage" setting in a URL Protection definition. The default value is 5%, but can be set to anywhere between 1% and 100%, with the percentage value controlling the number of times a user is shown a "User Awareness Challenge" message. For example, a value of 25% means the user is shown a challenge page every fourth URL click. If users choose incorrect responses to the prompts, the frequency of which the messages are shown to them will increase.

 

By default, User Awareness is a dynamic feature that becomes more or less frequent on a per user basis, as the user clicks more and more links. Incorrect responses to these prompts will increase the frequency of which the messages are shown to the user. Select the "Disable User Awareness Dynamic Challenge Adjustment" option to disable these dynamic challenge adjustments, and keep to the chosen challenge percentage value.

 

If the dynamic setting is enabled, the expected behavior is as follows:

 

User ActionResult
The user clicks "Continue" on an unsafe link from a user awareness page.

25% is added to their personal challenge adjustment total.

The user clicks on a link blocked by URL Protection when no user awareness page is displayed.

25% is added to their personal challenge adjustment total.

Automatically every Sunday

5% is taken off each user's personal challenge adjustment total.

User clicks "Exit" on an unsafe link from a user awareness page.5% is removed from their personal challenge adjustment total.
User clicks "Continue" on a safe link from a user awareness page.

No change is made to the personal challenge adjustment total.

User clicks "Exit" on a safe link from a user awareness page.

No change is made to the personal challenge adjustment total.

User clicks on a link in a message that has expired in the Mimecast archive.The user is not challenged for message links that have expired in the Mimecast archive.
The challenge percentage value will not go lower than the value set in the User Awareness Challenge Percentage field of a definition.

Customizing User Awareness Page Sets

 

You can create and manage sets of your own customized user awareness messages and safety tips in the Administration Console. The customized page set can then be activated in the User Awareness section of a URL Protection definition.

 

To configure and manage Custom Page Sets:

  1. Log on to the Administration Console.
  2. Click on the Administration menu item. A menu drop down is displayed.
  3. Click on the Services | URL Protection menu item. The URL Protection management dashboard is displayed. 
  4. Click on the User Awareness Page Sets button. A list of any previously configured customized page sets will display, containing the following columns:
    Column Description
    Page Set Name Displays the name given to a customized page set when it was configured. This is an internal reference only.
    Custom Pages If you have configured customized pages within a User Awareness Page set, a green tick will appear in this column.
    Custom Tips If you have configured any customized tips within a particular page set, a green tick will appear in this column.
    Default TipsIf you have not configured any customized tips, a green tick will appear in this column confirming default tips are active.
  5. Use the following features to manage any existing customized sets, as listed in the User Awareness Page Sets section:
    FeatureFunction
    Search To look up a customized set, enter a search term into the search bar, and then press enter or click on the search icon to display results.
    EditClick on the dotted icon to the far right of each set in the list to display a drop down menu. Click on Edit to amend the page set as required, and save your changes.
    DeleteClick on the dotted icon to the far right of each set in the list to display a drop down menu. Click on Delete to remove the page set.

    User Awareness Page Sets

  6. Click on the Create Page Set button. A page will display listing the following User Awareness messages:
    New Page Set TitlesFunction
    Page Set Name

    Enter a name in the New Page Set field to identify it when configuring the definition. This is an internal reference only. An alert will appear, and you will not be able to save the page set until a name has been entered in this field.

    An Alert alert icon will appear, and you'll be unable to save the page set until a name is entered in this field.
    User Challenge PageThis randomly selected page is used for training purposes, and asks the user if they think a link is safe. The user can review the link information, and click either the It's Safe, or It's Harmful button. 
    Safe Link Identified PageConfirms to the user that the link is safe, after choosing to click the It's Safe button. The user can click on Continue to Page to visit the URL.
    Safe Link Misidentified PageAdvises the user that even though they clicked on the It's Harmful button, the link is actually safe. The user can safely continue to the original web page by clicking the Continue to Page button.
    Harmful Link Identified PageConfirms to the user that the link is unsafe, after correctly choosing to click the It's Harmful button. The link is blocked and the user is prompted to close the page.
    Harmful Link Misidentified Warning PageThe user is warned that the link is potentially harmful. The user can still continue to the page by clicking the Accept Risk and Continue button if they choose.
    Harmful Link Misidentified Block PageConfirms to the user that the link they clicked on is unsafe. The link is blocked and the user is prompted to close the page.
  7. To customize the text of user challenge messages:
    • Click on any of the page set titles to display a drop down box.
    • Enter your chosen text into the Title or Body Text fields.
    • Preview your changes to the right of the page as you type, and make any adjustments as required.
  8. To configure customized Safety Tips, click on the Safety Tips tab. A drop down menu will display the following options:
    Safety Tips OptionsFunction
    Default tipsSelect this option to use only our 10 default Safety Tips in User Awareness messages within a page set. You can preview each tip by clicking on any one in the list.
    Default and custom tipsSelect this option to add one, or up to 10 of your own customized tips. These will appear at random alongside the default tips in User Awareness messages. To do so:
    1. Click on the Create Tip button.
    2. Enter the main text into the Tip Text field. A preview of the tip will appear to the right of the screen as you type.
    3. Select a suitable image from the Icon drop down menu, to match the topic of your tip as shown below:

      Macros & Technology
      Macros & Technology

      Password Requests
      Password Requests
      Sender Checking
      Sender Checking
      Bulk Emails
      Bulk Emails
      Links to Login Pages
      Links to Login Pages
      Panic Emails
      Panic Emails
      Money Requests
      Money Requests
      Fake Links
      Fake Links
      Unsolicited Requests
      Unsolicited Requests
      Fake Identities
      Fake Identities
    4. When you are finished, click on the Add Tip button. Your customized tip will be listed to the left.
    5. Preview and check any customized tip by clicking on the title, or click on the Preview All button to see the full list.
    6. Click on the dotted icon to the right of any custom tip in the list to preview, edit, or delete a tip. 
    Custom tipsSelect this option to configure up to ten of your own customized tips. In this case, only customized tips will display in user awareness prompts. Follow steps 1-6 of the "Default and custom tips - Function" table section above.
    Safety Tips will rotate at random throughout the different User Awareness Challenge messages. Users can click on the Previous or Next buttons within the Safety Tip message to view more tips.
  9. Click on the Save button once you have finished customizing your page set. 
  10. Apply the customized page set to the Inbound - User Awareness settings of a URL Protection definition.

 

See Also...

 

3 people found this helpful

Attachments

    Outcomes