I have a domain that I want to protect with the self-hosted access (already set it up), but also any URL on that domain. How do I do this? The domain is protected, but not URLs on the domain. I can’t figure it out.
Any assistance is always greatly appreciated.
Two zero Access policies for a given domain assuming a deny all by default.
One for the root domain and one for *.example.com which have a policy which can’t be passed. And the subsequent policies for hosts which are explicitly meet the logon conditions.
So, it is blocking example.com just fine, but is not blocking example.com/123abc.html <= There are multiple URLs. How do I block those?
Not sure if this helps, but the WAF is before Access if you wish to block specific URLs…