Remote browser isolation (RBI) offers an additional layer of protection against malware by redirecting traffic from suspicious sites or site categories to an isolated environment. By doing so, users can safely interact with suspicious content in a read-only manner: Users will not be able to enter or upload sensitive data, download malware on the endpoints or copy data from a suspicious site.

RBI does not block access to a website - instead, it places a boundary around the activity to narrow access to users, domains, or devices. RBI limits all websites to read-only access.

You can create access control policies in Lookout to isolate suspicious web categories, including Uncategorized, No Content, and Parked Domains.

You can also isolate custom websites that your organization might consider at higher risk for malware, ransomware, or data theft.

You can monitor isolation activity through web discovery charts that provide counts of activity on your isolated sites, and view isolation data from the Activity Audit logs.

RBI is an add-on feature that is available by subscription.

The following sections outline how to create RBI policies and track activity on isolation sites.

Before configuring isolation policies, you must enable Single Sign-On for Lookout-isolation in your IdP. Work with your Lookout professional services representative to complete this step.