Sophos Certified Engineer Practice Exam 2025 - Free Sophos Engineer Practice Questions and Study Guide

The correct choice is to edit the Web Control policy in order to block users from visiting specific website categories. Web Control is designed specifically for managing and regulating internet usage by controlling access to websites based on content categories. By using this policy, administrators can effectively filter out undesired website categories, such as adult content, gambling, or social media, thus enhancing security and productivity within an organization.

The other options offer different functionalities. Firewall Settings typically focus on controlling network traffic and port usage but do not specifically filter web content. Application Control helps manage the applications that are allowed or blocked on endpoints but does not directly address website category restrictions. User Access Policy is meant for defining permissions based on user roles but doesn't encompass web filtering capabilities. This is why focusing on Web Control is the appropriate course of action for blocking specific website categories.