However, a possible data breach may happen through these domain as well if we bypass all the listed domains from steering traffic, since a few are not restricted for enterprised-used.
Has anyone successfully configured DLP policies for Adoble solutions? Ideally we would like to find a way to allow these domains for Adobe certification executable only, while still monitor possible file sharing or sensitive design files leakage scenarios.
@AllenWu - Very good question, so far we also had issues performing SSL inspection on adobe traffic due to their stringent security controls. Not sure if importing Netskope root and intermediate CA certs into Adobe applications will establish trust which should help in performing SSL inspection so DLP policies can be applied. This is something you can check with Netskope support or Technical account manager to see if its possible or if there is any other solution.
You can create certificate pinned apps for adobe processes (.exe) and then bypass certain domains from Netskope inspection to make it work, this way other activities related to adobe domains are still monitored. Please review below links to see if they help.