Hello,
We’re deploying Zero Trust in a limited business use case, and will be using Azure AD as our auth provider. I was curious as to how quickly a users access to the WARP client would be terminated when the user is disabled in Azure AD. Does WARP perform authentication on every connection, or could there be a situation where a user was disabled in Azure AD, but the WARP client on their phone still had an access token Cloudflare would accept, thereby granting access to internal resources to a terminated user.
I looked through the Zero Trust docs, including the sections on Azure AD and Session Management, but didn’t really see what I was looking for. If I missed something, please do point me in the right direction.
Thanks!