I have an odd issue that has been popping up off and on for a week or two but doesn't seem to affect everyone (or they aren't reporting it, not sure which). I have had this happen to me specifically as well, so I know I'm not just getting false reports from users. I am running Websense Web Security v7.6.5.
I have a "Managers" and an "IT" filtering group with varying levels of access. Randomly, Websense will decide to block a site for someone in a less restricted group; in this case Facebook for one of the managers that is in the Managers group and updates our company Facebook page.
When you check his user name on the Triton control panel, it correctly pulls up the user as associated with the "Managers" filtering policy. When you check his user name and www.facebook.com for a filtering check, it also pulls up correctly and says that the site should be allowed under the "Managers" policy.
I hop over to the real time monitor on the local server and it shows the HTTPS traffic IP address as allowed, then the URL www.facebook.com is blocked. Upon checking the local site policy server, it does not recognize that this user is a member of the "Managers" group and is lumping him in with the Default policy.
I can typically clear the "Directory Services" cache under Settings --> General --> Directory Services and it will rebuild and be functional again in about 15 minutes or so, but this should not be necessary. Any help that can be provided would be appreciated.
*** I have two sites, each running a server in stand-alone mode, policy broker, logging server, and logging database are at one site. I have a Domain Controller at each location (identical operating systems - server 2012) local to each policy server for the directory agent to poll. Policy Broker server is Server 2008 R2, secondary server is Server 2003 R2.