Require authentication to access a website or web application
Before you begin
With the Optional mode, users can skip authentication. However, access is not guaranteed when the user skips authentication. For example, if the Social Media category is blocked to every user except for users in Group A, the users in Group A can access social media websites that are part of this category. To access a social media website, users in Group A can authenticate or skip authentication. If the user skips authentication, they are assigned the most strict policy action. In this case, the user who skipped authentication is blocked from accessing the social media website because ETP is unable to confirm that the user is part of Group A.
- In the Enterprise Center navigation menu, select .
- Display the policy where you want to enable an authentication mode.
- Click the Settings tab.
- In the Authentication Mode menu, select Require. Or to allow users to skip authentication, select Optional.
- In the Identity Provider field, select the identity provider to use for authentication.
- Click Save and deploy your changes.
- If you blocked a risk level,
category, operation, application, or application operation in a policy and there
are specific users or groups that you want to exempt from the block action, see
Grant access to specific users or groups.
Application visibility and control allows you to configure user and group access to websites and web applications that are otherwise blocked by the policy. For more information, see Application visibility and control and Configure application visibility and control.
- If you want to configure users and groups that can access blocked domains, see Add a Block list to a policy.