Netskope Help

Bypass SAML Forward Proxy Authentication Methods

There are use cases where SAML Auth will need to be bypassed for traffic steered via the IPSec or GRE tunnel.

Netskope has three methods of bypass:

  • Domain Bypass: Like www.<finance website>.com and www.<finance website>.com. Wildcards (like *.tld) are not valid.

  • Web Category Bypass: Like Finance/Accounting.

  • Source IP Address - User IP / Egress IP: Like Guest Wi-Fi, Server Subnets

The three options can be configured from the tenant under Settings > Security Cloud Platform > Forward Proxy > Authentication.

image43.png