WARP, API auth and user details

What is the name of the domain?

What is the issue you’re encountering

Set/Get User information from devices authorised using API key

What steps have you taken to resolve the issue?

We are a small business trialing Cloudflare WARP and starting a Zero Trust journey. We chose to distribute WARP using our MDM and enrol our MacBooks using an profile config (as described in the documentation) where we place the API key (the same key for all users).

When I go to My team > Devices, I see the device names as expected but the email is always: [email protected] - thus all the reports show this user and have to really drill down to the details each time.

I get that WARP does not know the user as this was not set anywhere, checked the documentation and did not see anything to add to the mobileconfig to identify a user so wanted to ask if this is possible or Email is only visible when users authenticate within WARP?

Thank you!

Hi @kostas74,

I believe you followed this documentation: Device enrollment permissions | Cloudflare Zero Trust docs, right?

Devices that enrolled using a service token (or any other Service Auth policy) will have the Email field show as non_identity@<team-name>.cloudflareaccess.com.

You may want to use an IdP and add your organization to your MDM profile:

In this way, you are able to distiguish your users’ emails in your logs.