Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Control Agentless Notification

  1. Last updated
  2. Save as PDF

Agentless Notification displays when agentless actions are triggered. In some cases, these pop‑ups can be unexpected or disruptive where background actions within a page may repeatedly trigger notifications. To reduce unnecessary notifications, you can configure policies that control when agentless notifications are shown or suppressed.

Use Cases

Use Case 1: Reduce Notification Fatigue 

An organization blocks the Advertising category. Since advertising sites are frequently accessed, users would see repeated agentless pop‑ups. By applying a blacklist rule, administrators suppress notifications for this category, reducing annoyance and improving user experience.

Use Case 2: Prioritize Critical Alerts (DLP Focus)

An organization wants agentless notifications to display only for Data Loss Prevention (DLP) events. Administrators disable agentless notifications globally, then selectively enable them for traffic of interest. As a result, users only see pop‑ups when sensitive data is at risk, ensuring attention is directed to high‑priority issues.

You can apply different approaches:

  • Block list approach: Suppress notifications for specific categories (for example, Advertising, Telemetry services).
  • Allow list approach: Allow notifications only for selected categories, e.g. Web DLP.

To use an allow list approach, first it is necessary to disable agentless notifications unless explicitly requested.  Note that this is not the same as disabling the Agentless Notifications ruleset, which should remain active and scoped for all sites.  This is because the primary site in the browser (used for scoping the Agentless Notifications ruleset) often is not the same location as that triggering unwanted alerts.

To Configure Don’t Show Agentless Policy:

Navigate to Settings > Web Policy > Policy Rule Set > Browser Control.

This is a generic rule set (not part of the rule set library). Use this rule to define conditions where agentless notifications should or should not display. The rule executes before the first block policy occurs.

Add a custom ruleset which disables agentless notifications by default:

clipboard_ee44f00955f7af6a290346605c8931027.png

The new ruleset will display at the bottom of the Browser Control ruleset:

clipboard_ec31e396396d41cb8898498e5a5434fe5.png

Enter the name of new ruleset and set the criterion to All Traffic.  Set the rule to apply to the request cycle only:

clipboard_e81287ee081799008695734396a919f97.png

Add a custom rule via rule builder to the ruleset using:

clipboard_e0533dd82bc8c9c0d263a25024d69305f.png

Scope the rule to also apply to All Traffic, set the action to Continue.

clipboard_e9c6a993b9fa66d1805549e09a663dc60.png

Select Add Event and select Enable Agentless Notifications then set that to disabled:

clipboard_ecb9349ff1b828a78988bf6cf40c8b3f1.png

To disable Agentless Notifications only for Advertising web sites (block list example):

  1. Navigate to the policy where Advertising web sites are being blocked (example, in Web Filtering > Category, Reputation & Geo > Category )
  2. In the appropriate rule, add an event to disable Agentless Notifications:

This ensures pop‑ups are suppressed if a block occurs due to such sites.

To apply Agentless Control for Web DLP (allow list example):

  1. Navigate to Web Policy > Policy Rule Set > Data Protection (DLP) > Web DLP.
  2. Enable agentless notifications globally as above, then selectively enable them for DLP traffic.
  3. In code view for the DLP policy, locate the block executed when a DLP classification is triggered.
  4. Add the event: Enable Agentless Notifications = False.
    This ensures pop‑ups are suppressed unless a DLP block occurs.
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    This page has no tags.