Symantec Mobility: Suite lets you restrict an app's access to only the internal resources that you specify in the app policy. By default, end users receive a notification message when URL connections that don't comply with your network access policy are blocked. You can restrict access to whitelisted domains even if you don't use Secure App Proxy.
Create a new app policy
Click Polices and rules > App policy and click New app policy. Specify a name and description for your new app policy. Configure General Settings as desired.
Tip: The User authentication required option is enabled by default; it must be enabled to use Secure App Proxy.
In the Whitelisted locations table, do one of the following:
Allow all URLs to connect to your network
This is the default setting. No further action is required.
Tip: Even if you allow all URLs to connect, you may still want to specify security and credential injection restrictions.
Specify a specific URL that users are permitted to connect to within your network
Specify the following information:
UDP is not supported for Mobility Suite 4.4 if you use Secure App Proxy.
Security settings let you specify whether SSL encryption is required, if untrusted certificates are accepted, and the SSL cipher strength.
Important: When you set the cipher strength to Strong, if the URL points to a web server that accepts both weak and strong ciphers, the server will likely negotiate for a weaker cipher in which case Mobility Suite will block the connection. However, if the web server only accepts strong ciphers, Mobility Suite will allow the connection.
Important: If you use SAML as your IDP and want to use app proxy, you must add the SAML server address to your whitelist. Even if you permit all URLs to connect to your network (*.*), you must still manually add the SAML server address for SAML authentication and single sign-on to occur.
Click New Location to add and specify another network location.
Tip: When you click New, the settings from the previous URL are duplicated in the new URL list.
Mobility Suite supports 50 domains per policy.
To change the order of the domain in the list, on the Whitelisted locations box, select the location that you want to move and drag and drop it in the desired order.