Skip to main content

Netskope Help

Known Issues In Release 100.0.0

Here is the list of known issues in this release.

Issue Number




API Data Protection

An issue is observed in API Data Protection for Microsoft Office 365 SharePoint where a retroactive scan processes a site document library despite being excluded from the policy definition. This is a known issue. A fix will be available in an upcoming release.


CASB Real-time Protection

IP range fails when encounters a network location issue.


DNS Security

The number of hits for DNS policies in real-time protection page is not accurately reflecting the number of alerts generated for DNS traffic. No workaround is found for this issue.


Netskope Secure Web Gateway (NG SWG)

Netskope features a foreground/background detection system which when applied to web traffic enables block alerts for a webpage to be shown only on the main page.

Traffic for all native apps that do not have an app-specific connector are subjected to this detection logic. The background detection logic takes into account the response headers sent back from the server, while the response never reaches the user. This might result in a potential information leakage due to the user's request being fully transmitted to the destination server.


Netskope Secure Web Gateway (NG SWG)

User to IP mapping fails and are not fetched to the IPSec Tunnel.


Netskope Secure Web Gateway (NG SWG)

The CCL criteria in Inline Policy does not work correctly for some tenants.


Netskope Secure Web Gateway (NG SWG)

It is a known issue that the devices page of the site is not loading when tss-scan-v3 is enabled.


Netskope Secure Web Gateway (NG SWG)

The website fails to render response page as expected while accessing through Internet Explorer.


Netskope Secure Web Gateway (NG SWG)

RBI does not disable Private Navigation when you disable the control in the RBI template. Therefore, cookies generated in isolation cannot be stored in the end user’s local browser.

The workaround is to create an RBI policy for a custom category with the URL "*".

Navigate to Policies > Profiles > Web > URL List tab > New URL List button


Navigate to Policies > Profiles > Web > Custom Categories tab > New Custom Category button


Navigate to Policies > Real-time Protection > New Policy dropdown > RBI Policy



Platform Services

When an admin without permission to Real-time Protection Policy page edits the Policy Groupundefined policy group picker component is displayed.


Platform Services

When a policy is moved from one group to another and reverted Pending Changes is empty as expected, but the icon is displayed.


Platform Services

Forward Proxy page should be set to View, for IPSec and GRE pages to work as expected with Manage privilege.


Platform Services

The request to load pending differences modal time out when there are large number of policies with pending differences.


Platform Services

Real-time Protection and SSL Decryption policies apply changes feature applies changes to profiles or template even though the admin does not have Apply permission.


Platform Services

Policy Drag and Drop causes group with pagination, that is where policy group falls under multiple pages this causes re-order issue. The workaround is to use Move functionality.


Traffic Steering

Its a known limitation that when NPA Application and DNS are using same custom port, NPA traffic is also treated as DNS traffic and forwarded to the Cloud Firewall. This occurred only when custom DNS port feature flag was enabled. It is advised not to configure same port for DNS and NPA private applications.