Mikey @DNSFilter: As an MSP/Reseller, we have a few clients who frequently needs to whitelist websites due to them being properly categorized as a parked website, and would like to grant an employee there the ability to login to the portal outside of our business hours and whitelist websites without waiting on our helpdesk to reopen.

Thanks Alden. You can already setup a policy only user, why is the time restriction important?

Mikey @DNSFilter: As Brian mentioned below, being able to restrict them to only using this as a 'break glass' or 'after hours' keeps our security posture and accountability in place, along with reducing any sort of attack surface. While the 'send an email to your administrator' feature works well 99% of the time, the 1% where a domain requires whitelisting at an irregular hour, weekend, or both, is a hindrance that has the potential to interrupt operations of an entire company. From a security standpoint, there isn't a justifiable reason to give an always-on account to our clients/partners. The current solution would be to manually enable and disable these accounts daily, or invoke the API to perform this task via a self developed solution.