Warp or Gateway requirment

Security Access
#1

We have Cloudflare Access set up. We have a server being protected and forcing users to sign into the Cloudflare app dashboard to get into it.

Following this: https://developers.cloudflare.com/cloudflare-one/identity/devices/require-gateway I try to set WARP as required but I find I am still able to access the login page and click into the app without WARP. What am I missing?

We’re protecting a web server in AWS with security groups opened to CF IPs and proxied through CF DNS.

#2

Hi there,

A couple common things that I’ve seen issues with Require Gateway configurations:

  1. Is the WARP/Gateway rule set up as a “Require”? If it in in “Include” then it will be treated as a logical OR instead of AND.
  2. Do you have more than one policy rule set up for this application? The user could be passing due to a different policy.
  3. Do you have an existing session in that application?