Category Filter

Web content filtering on iOS devices

Web content filtering allows the admin to block or grant access to specific websites for secure browsing. The admin can regulate web-access on iOS devices by either blacklisting or whitelisting URLs. It enables enterprises to restrict devices from accessing malicious sites and helps keep the devices secure.



  • This feature works only on supervised iOS 7.0+.
  • Available on all pricing plans except Express and Pro.

Configure Web Content Filtering via policy

Hexnode lets you create a policy containing the blacklisted or whitelisted websites and push the policy to the target devices. To configure the policy,

  1. Log in to your Hexnode MDM portal.
  2. Navigate to Policies > New Policy. Assign a suitable name and description (optional) for the policy. You can also choose to continue with an existing policy.
  3. Go to iOS > Security > Web Content Filtering. Click Configure.
  4. Choose the appropriate Filter Type: Blacklist or Whitelist.

Filter Type 1: Blacklist

To block access to specific websites,

  • Choose the filter type Blacklist.
  • Enter the URLs to be blacklisted. Use comma or semi-colon to separate multiple URLs. Add valid URLs only. Valid URLs start with ‘http://’, ‘https://’ and ‘rstp://’.
  • Click on the Add button to enlist all the URLs to be blocked. To remove a URL from the list, click on the trash icon to the right of the URL.

You can also enable Apple’s built-in web filter by enabling the option “Restrict inappropriate Content”. It will block any content that includes profanity or sexually explicit language automatically. Although Apple is not completely perfect with blocking, it reduces the need to blacklist every URL to the blacklist manually. When you enable automatic filtering, you can see a text box right below where you can add URLs that you don’t want to be checked by the web filter.

Blacklist by content

Usually, when you blacklist a URL in web filtering, it blocks access to it in the browsers. However, it is possible to access the corresponding app. In such cases, Hexnode allows you to blacklist/whitelist apps to control access to the apps.

Filter Type 2: Whitelist

To grant access to specific websites,

  • Choose the filter type Whitelist.
  • Enter the URLs to be whitelisted in the appropriate text field. Add a valid URL starting with either ‘http://’ or ‘https://’. Only a single URL can be entered at a time, so separating multiple URLs with comma or semi-colon won’t work here.
  • The Bookmark Name field allows you to create bookmarks in Safari. Name them, and they will appear as bookmarks.
  • The Bookmark Path field specifies the location for bookmarks in Safari. Since Apple updated this setting, all bookmarks will be listed under the “Approved Sites” folder, irrespective of what you enter here.
  • Click on the Add button to add the URLs to the list. All the whitelisted URLs are displayed right below the text fields. To remove any of the URLs from the list, click on the trash icon corresponding to the URL.

Associate Policy with Devices

Method 1: If the policy has not been saved,

  • Navigate to Policy Targets > Devices > +Add Devices.
  • Choose the target devices and click OK. Click Save.
  • You can also associate the policy with Device Groups, Users, User Groups, or Domains from the left pane of the Policy Targets tab.

Method 2: If the policy has been saved,

  • Go to the Policies tab and choose the desired policy.
  • Click on Manage drop-down and select Associate Targets.
  • Choose the target entities and click Associate.

Associating the policy with a device will disable private browsing and will clear browsing history and website data in Safari.