1. Access the EMS GUI and then go to Endpoint Profiles -> Firewall, then edit the desired profile:

There are two options to block WhatsApp/Telegram:

• Blocking the entire category, 'Collaboration' category.
• Blocking only the application to allow access to other apps at the same category.

In this example, the 'Collaboration' category will be allowed and an application override will be created to only block WhatsApp/Telegram.

2. At the desired profile, scroll down to 'Application Override', and then, select 'Add' as shown in the figure below:

3. A new window named 'Firewall Application Signatures' will be shown. Select the filter to search for the WhatsApp/Telegram:

4. Type the app name. in this case 'WhatsApp', and some options will appear:

To block the entire app communication, select the first option. Select then the option to block, at the left side of the 'Add' button, and select 'Add'.

Select 'Add' again, type the app name. in this case 'Telegram', and some options will appear, mark the first option:

Then select the option to block, at the left side of the 'Add' button, and select 'Add'.

5. Select 'Save', to save the config:

With the configurations saved, wait around 1 minute for the changes to be replicated to the endpoints that use the profile.

6. When the user attempts to open the WhatsApp/Telegram application, a warning message will appear informing that the app is blocked:

It is also possible to see the warning at the 'Notifications' tab in the FortiClient as shown below:

The WhatsApp/Telegram access attempts can also be viewed from the EMS GUI:

To see the events above go to Endpoints -> All Endpoints, search for the device, and select 'Firewall Events'.

The WhatsApp/Telegram application is blocked and all attempts to access will be recorded.