Enable Exclusions for File Type Downloads
Enable Exclusions for download blocking for suspicious file types.
eg: Block EXEs, but allow from CompanyURL.com
Opened a case with support for this because the current exception feature in Sophos Central does not work. They asked that I put in a feature request, but it seems that if there is already an exception tagging methodology, this isn't so much a feature request as it is a bug. The site/domain/IP override in the Web Control Policy should apply across all sub-categories, namely: "Additional security options", "Acceptable web useage", and "Protect against data loss". Once the "Control sites tagged in Website Management" works as it should (i.e. overrides all of the above) a feature request might be to allow more specific/detailed 'allows' that override only certain sub-policies. But for now, just have it override all Web Control policies, please. This is a bug.