> ## Documentation Index
> Fetch the complete documentation index at: https://docs.cystack.net/llms.txt
> Use this file to discover all available pages before exploring further.

# Block File Uploads

> Guide to using the file upload blocking feature

<Card>
  **Use Cases**

  * Prevent employees from intentionally uploading sensitive company data to competitors.
  * Block users from accidentally uploading data to unapproved or insecure channels, which could lead to data leakage.
</Card>

**For Web Browsers:** CyStack allows you to configure policies to block file uploads to any website by specifying the website's domain name.

**For Desktop Applications:** CyStack supports blocking file uploads through the following application categories:

<Accordion title={<><strong>Chat and Email Applications:</strong></>}>
  * Zalo
  * Telegram
  * Discord
  * Slack
  * Outlook
  * Facebook
</Accordion>

<Accordion title={<><strong>Cloud Storage Applications:</strong></>}>
  * Cloudflare
  * Fshare
  * Google Drive
  * OneDrive
  * Mediafire
</Accordion>

<Accordion title={<><strong>Workflow Management Applications:</strong></>}>
  * Base.vn
  * Salework (Zalo)
</Accordion>

***

## Feature Workflow Details

<Steps>
  <Step title={<>Administrators access the product under "Endpoint" {'\u2192'} "Data protection" {'\u2192'} "File upload block".</>}>
    <img src="https://mintcdn.com/cystack/NwFcT4Q52zfPNCn3/images/endpoint/en-block-upload-toggle.png?fit=max&auto=format&n=NwFcT4Q52zfPNCn3&q=85&s=94884d43f48970f8d4a38c7a8232a75f" alt="block-upload-toggle" width="883" height="284" data-path="images/endpoint/en-block-upload-toggle.png" />
  </Step>

  <Step title={<>Click the <code>Block upload</code> button {'\u2192'} a notification indicating the policy is enabled will appear.</>}>
    <Tip>
      When the policy is enabled, file uploads to all websites and applications in the list above will be blocked by default.
    </Tip>

    **Example:** An employee attempting to upload a file via Zalo will be blocked, and the upload will be flagged as failed, as shown in the image.

    <img src="https://mintcdn.com/cystack/e7ixGLpy9hH6GVF0/images/endpoint/en-block-upload-blocked-example.png?fit=max&auto=format&n=e7ixGLpy9hH6GVF0&q=85&s=99a88cd59a851e26f6c4af5d41252e05" alt="block-upload-blocked-example" style={{display: 'block', margin: '0 auto'}} width="524" height="444" data-path="images/endpoint/en-block-upload-blocked-example.png" />
  </Step>
</Steps>

***

## To Allow File Uploads for Specific Applications, Administrators Can:

<Steps>
  <Step title={<>Click the <code>Add service</code> button.</>}>
    <img src="https://mintcdn.com/cystack/e7ixGLpy9hH6GVF0/images/endpoint/en-block-upload-add-rule.png?fit=max&auto=format&n=e7ixGLpy9hH6GVF0&q=85&s=ce7418625a0d08f8576727beeb565cf3" alt="block-upload-add-rule" width="1028" height="467" data-path="images/endpoint/en-block-upload-add-rule.png" />
  </Step>

  <Step title={<>In the pop-up window, enter the application name or domain name for the application you wish to allow. Select the specific devices or device groups for which file uploads will be permitted.</>}>
    <img src="https://mintcdn.com/cystack/e7ixGLpy9hH6GVF0/images/endpoint/en-block-upload-config-rule.png?fit=max&auto=format&n=e7ixGLpy9hH6GVF0&q=85&s=46c7ffd11f2fe225e462903a358ed6f0" alt="block-upload-config-rule" style={{display: 'block', margin: '0 auto'}} width="575" height="439" data-path="images/endpoint/en-block-upload-config-rule.png" />
  </Step>

  <Step title={<>Upon saving the policy, the selected devices/device groups will be allowed to upload files to these specified applications.</>}>
    <img src="https://mintcdn.com/cystack/e7ixGLpy9hH6GVF0/images/endpoint/en-block-upload-rules.png?fit=max&auto=format&n=e7ixGLpy9hH6GVF0&q=85&s=f5da44280fe0191f4516f83b351f8fce" alt="block-upload-rules" width="1822" height="907" data-path="images/endpoint/en-block-upload-rules.png" />
  </Step>
</Steps>
