Hello,
In the context of a project involving the Netskope agent (ZTNA) and BWAN, we use the SAML Forward proxy component to authenticate users on first login (and periodically).
Today, users are subject to two authentication procedures. As a result, the user experience is degraded.
Is it possible to have a single sign-on between the two Netskope / BWAN agents?
Question
Single Sign-On BWAN / ZTNA
This topic has been closed for replies.
+20Hi
Thank you for contributing your thoughts to our Community Ideas space! We love seeing suggestions that aim to drive impactful solutions addressing multiple use cases.
However, after reviewing your post, it seems more aligned with a question that could benefit from the collective expertise of our community members. We recommend posting it in the Community Additional Discussion forum, where your peers can provide valuable insights and share their experiences to help address your query.
If you still believe this is a feature request, feel free to provide additional details on the specific functionality you envision and its potential impact. This will help us better evaluate the idea's alignment with product development goals.
CC
Best Wishes, Rohit Bhaskar
+5Hi
Hi @Lionel,
you may think of publishing the BWan gateways as a privateApp.
You configure authentication for NPA, and no authentication for BWan.
So, NPA will authenticate the user, and by the way will secure Bwan connections (no double auth).
Drawback is that you have a tunnel encapsulated in another tunnel.
Benefit is that you do not expose Bwan gateways on Internet, and user experience is better.
Michael
This is very interesting - is publishing the BWAN gateways as a privateapp a supported configuration?
Sign up
Already have an account? Login
Sign in or register securely using Single Sign-On (SSO)
Employee Continue as Customer / Partner (Login or Create Account)Login to the community
Sign in or register securely using Single Sign-On (SSO)
Employee Continue as Customer / Partner (Login or Create Account)Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.