Bypass SAML Forward Proxy Authentication Methods
There are use cases where SAML Auth will need to be bypassed for traffic steered via the IPSec or GRE tunnel.
Netskope has three methods of bypass:
Domain Bypass: Like www.<finance website>.com and www.<finance website>.com. Wildcards (like *.tld) are not valid.
Web Category Bypass: Like Finance/Accounting.
Source IP Address - User IP / Egress IP: Like Guest Wi-Fi, Server Subnets
The three options can be configured from the tenant under Settings > Security Cloud Platform > Forward Proxy > Authentication.