Missing security categories in Cloud SWG Content Filtering policy editor
Article ID: 435208
Updated On:
Products
Issue/Introduction
You are unable to see or select specific security categories when configuring Content Filtering policies in the Cloud Secure Web Gateway (Cloud SWG) portal. While these categories are visible in a local Visual Policy Manager (VPM) of an on-prem Edge SWG, they do not appear under the "Security" topic in the Cloud SWG policy editor.
The following categories are reported as missing:
- Malicious Outbound Data/Botnets
- Malicious Sources/Malnets
- Phishing
- Proxy Avoidance
- Spam (missing from "Security Concerns")
Under the main "Security" topic, only "File Transfer" and "Security Concerns" subsections are visible, while "Security Threats" and its associated categories are absent.
Environment
- Cloud Secure Web Gateway (Cloud SWG)
- Content Filtering Policy Editor
Cause
These specific security categories are missing from the Content Filtering policy editor because they are permanently blocked by default within the Threat Protection layer of Cloud SWG.
Resolution
These categories are not available for selection in Content Filtering because Cloud SWG automatically handles them through a global threat protection policy.
To verify the status of these categories:
- Log in to the Cloud SWG portal.
- Navigate to the Threat Protection layer.
- Locate the Permanently Blocked Categories section.
- Confirm that the missing categories (such as Malnets, Phishing, and Botnets) are listed as permanently blocked as depicted below:
Because these categories are globally blocked to ensure security, they cannot be modified or bypassed via standard Content Filtering policies and are therefore excluded from that editor's view.
Feedback
