Require authentication to access a website
Before you begin
With the Optional mode, users can skip authentication. However, access is not guaranteed when the user skips authentication. For example, if the Social Media category is blocked to every user except for users in Group A, the users in Group A can access social media websites that are part of this category. To access a social media website, users in Group A can authenticate or skip authentication. If the user skips authentication, they are assigned the most strict policy action. In this case, the user who skipped authentication is blocked from accessing the social media website because ETP is unable to confirm that the user is part of Group A.
In the navigation menu, select
.Note: If you are trying the new Enterprise Center interface, in the navigation menu, select .
- Display the policy where you want to enable an authentication mode.
- Click the Settings tab.
- In the Authentication Mode field, select Require. Or to allow users to skip authentication, select Optional.
- In the Identity Provider field, select the identity provider to use for authentication.
- Click Save and deploy your changes.
- If you blocked categories in the acceptable use policy (AUP) and there are specific users or groups associated with an identity provider that you want to exempt from the block action, see Grant specific users or groups access to an AUP category.
- If you want to configure users and groups that can access blocked domains in a custom list, see Add a Block list to a policy.
- Application visibility and control allows you to configure user and group access to a web application that is otherwise blocked by the policy. For more information, see Application visibility and control and Configure application visibility and control.