There are use cases where SAML Auth will need to be bypassed for traffic steered via the IPSec or GRE tunnel.
Netskope has three methods of bypass:
Domain Bypass: Like www.<finance website>.com and www.<finance website>.com. Wildcards (like *.tld) are not valid.
Web Category Bypass: Like Finance/Accounting.
Source IP Address - User IP / Egress IP: Like Guest Wi-Fi, Server Subnets
The three options can be configured from the tenant under Settings > Security Cloud Platform > Forward Proxy > Authentication.
 |