Netskope Help

Creating a Custom Certificate Pinned Application

If you want to bypass web traffic from certain applications from the Netskope cloud, you can add them as a custom certificate pinned application.

To create a custom certificate pinned application:

  1. Go to Settings > Security Cloud Platform > App Definition.

  2. Click the Certificate Pinned Apps tab.

  3. Click New Certificate Pinned App.

  4. In the New Certificate Pinned Application window:

    • Application Name: Enter a name for the certificate pinned application.

    • Platform: Choose the operating system platform for this application. If this application is available on multiple platforms, click +Add Platform to add more definitions. Ensure you use:

      • Domain-based configuration for Android 9 or lower.

      • Process-based configuration for Android 10 or higher.

      Note

      Linux and separate options for Android and Chrome OS are in beta. If you want to enable these features in your tenant, contact your Sales team.

    • Definition: Enter the applicable program files of the application. You can add the definitions in the following format:

      • Exact: Enter the exact process name for matching. You can enter multiple entries separated by commas. Netskope doesn't support input quotes or the absolute path. Enter only the process name, such as googleefs.exe.

      • RegEx: Enter the Perl Compatible Regular Expression (PCRE) to use wildcard formats for process names such as python*.exe or ^([a-zA-Z0-9_\-\]+).exe. You can enter multiple entries separated by commas.

        Note

        This feature is in beta. If you want to enable this feature in your tenant, contact your Sales team.

    The New Certificate Pinned Application window for Exceptions under Steering Configuration.
  5. Click Save.

After creating your custom certificate pinned app, you can add it as an exception for your steering configuration.