Zero Trust - Self Hosted Access Policy - Service Auth Allows All

Hi,

With Zero Trust - Self-Hosted Access Policy - Service Auth it seems to Allow All.

I added a simple rule to allow an IP but instead of only bypassing access as expected for just that IP, all IPs are allowed, so it’s useless.

There is also a bug on the additional settings part if you set first to “allow” and enable “Temporary authentication”, then switch over to “Service Auth” and try to save, you will get the error:

“Error configuring your application: access.api.error.invalid_request: approval_required can only be true if purpose_justification_required is true
Error configuring your application: access.api.error.invalid_request: approval_required can only be true if purpose_justification_required is true”.

Best,

Will

Just realized this got dropped in Developers API. Didn’t notice that. I got here thru the support portal, you would think it would drop into the correct section.

And lame, can’t edit either. Come on, should allow editing for the first 5 mins or something.

Your rule is configured incorrectly