User Risk: Browser Defense Policies
Overview
Browser defense policies complement app usage policies (e.g. approved, tolerated, nudged, or blocked policies) by adding controls over what users can do in the browser. These admin-controlled toggles live in Settings > User Risk > Policies and are enforced by the User Risk browser extension in real time.
Browser defense policies
Browser defense policies help protect users as they work in the browser.
|
Category |
Policy |
What it does |
When it applies |
|
Data loss prevention |
File uploads and copy/paste |
Blocks users from uploading files to, or copying and pasting text into, unapproved apps. |
A user has Nudge access to an app that is flagged as Shadow AI. |
|
Authentication |
Personal OAuth login |
Prevents users from logging into apps using personal OAuth accounts (e.g. personal Google or Microsoft accounts). |
All sites that support sign-in with Google or sign-in with Microsoft. |
|
Authentication |
Password detection |
Detects when users sign in or sign up with predictable passwords (from a list of around 30,000 common passwords) or with passwords they've reused from other sites. |
All sign-up and sign-in form submissions. The check fires on form submit and prevents submission on sign-up until an appropriate password is selected. For sign-in: the extension issues a warning but allow sign-in. |
For details on what password detection does and doesn't see, see User Risk: Privacy.
Enable browser defense policies
- Click the Settings (gear) icon in UpGuard's upper right-hand corner.
- Click Policies under User Risk in the left panel.
- Scroll to the Data loss prevention or Authentication sections, depending on which setting you want to enable.
- Click the toggle next to the appropriate setting.
User Risk’s browser UI immediately updates and your user’s browser extensions will update within an hour.