Related to
Access
What is the issue you’re encountering
I want to disable site access through app launcher and only user with warp installed can access the protect application sites. I have free plan for zero trust. I added a Email policy so that users related to specific domain can only get one time pin.
What steps have you taken to resolve the issue?
I have enabled WARP under Device Posture and under Policy rule added require WARP rule as well.
I have added this policy under device enrollment, app launcher and access application.
Now when i try to open the application site without WARP i can see the page for One time login - instead i want to not show login option without WARP client
What are the steps to reproduce the issue?
- Create a self hosted application with any subdomain and add a path like /admin
- Enable WARP for application and in setting under warp device posture enable WARP
- Now add 2 policies
2.1 Domain policy - include email ending with domain.com and require warp
2.2 Ip policy - include source ip in - this is the list which you can add individual with include https://www.cloudflare.com/ips-v4/# - Use above policies in Application access , App launder and device enrollment
- Try to open site without warp and you can still see one time pin login
(Expected site should only show login when warp client in installed and logged in)