Prevent them from making changes to the proxy configuration via group policy. Or require authentication for outbound HTTP(s) at the rule or at the web proxy network config. Better yet, write out a corporate policy outlining acceptable use and Internet usage restrictions and have employees sign it -- If anyone violates policy, terminate their employment with extreme prejudice. t From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-bounce@xxxxxxxxxxxxx] On Behalf Of LEANDRO DOS S. FERREIRA - TI Sent: Thursday, October 08, 2009 1:30 PM To: isalist@xxxxxxxxxxxxx Subject: [isalist] Infor - Help - Authentication Hi All, I have a one user and this user does not have permisson in ISA to access the internet. If I login in a computer with webproxy and firewall client checked this user can not access internet web. But if I un-check the webproxy , he gets access to the internet. I do know what happened !! A few days ago is OK. I do not know how can I block this. I would like to prevent users to access the internet even they un-checking the webproxy. Only the users that have permisson can access the internet. Can you help me ?!?!? Regards _______________________ Leandro dos Santos Ferreira IT Team - Segurança da Informação mailto:leandro@xxxxxxxxxxx CBMM - Companhia Brasileira de Metalúrgia e Mineração Inovar - Respeitar - Competir