Policy Configuration Instructions
This document describes the specific configuration instructions for cloud desktop policies.
Domain Access Control
Domain access control rules are used to set domains that are allowed or prohibited from being accessed on cloud desktops. For example, according to company regulations, employees are not allowed to access work-unrelated websites during working hours, so administrators add entertainment website domains to the domain deny list.
| Configuration Item | Description |
|---|---|
| Control Method | Supports blacklist control and whitelist control. These two methods cannot be active simultaneously. |
| Domain | Enter the domain to which the access rule applies. Only one domain can be added at a time, and the "*" wildcard is supported. |
| Description | Custom description of the domain access rule. |
To ensure normal use of cloud desktops by end users, the following reserved security domains are not constrained by domain access rules, meaning cloud desktops always allow access to these domains. If you set the access policy for these domains to blacklist control, the rule will not take effect.
IP Access Control
IP access control rules are used to set IPs that are allowed or prohibited from being accessed on cloud desktops.
| Configuration Item | Description |
|---|---|
| Control Method | Supports blacklist control and whitelist control. These two methods cannot be active simultaneously. |
| IP Segment | Enter the source IP address segment to which the access rule applies. IP configuration supports CIDR format and address range format. For address ranges, use "-" to connect the start and end addresses, e.g., "192.168.0.0-192.168.0.10". |
To ensure normal use of cloud desktops by end users, the following reserved security IPs are not constrained by IP access rules, meaning cloud desktops always allow access to these IPs. If you set the access policy for these IPs to blacklist control, the rule will not take effect.
Peripheral Control
With peripheral control rules, you can manage the access permissions of cloud desktops to peripherals connected to local devices.
| Configuration Item | Description |
|---|---|
| USB Storage Devices | When enabled, allows cloud desktops to connect and use external storage devices via USB interfaces. When disabled, prohibits cloud desktops from connecting and using external storage devices via USB interfaces. |
| Printers | When enabled, allows cloud desktops to connect and use printers. When disabled, prohibits cloud desktops from connecting and using printers. |