Test the Configuration
Test with a device that does not have the Netskope client installed and has an active IPSec or GRE connection to Netskope.
Open a browser and URL on the device and login to ADFS. After successfully logging in the end user will see the URL requested and be able to browse web pages.
Login to the Netskope UI and go to Skope IT. Search for application/page events with the logged-in user. The events should show the AD username instead of an IP address.
After successfully authenticating via ADFS, the user authentication session is valid for 7 days via a cookie that is set. After 7 days users will be forced to re-authenticate. Also, there is a cache maintained for username and source IP address tuple which expires after 24 hours of inactivity.