Forum Discussion

Satellite

8 months ago

Cato SDP Client to be auto intelligent to login instead of manual logging

I have recently migrated from Netskope to Cato Networks. One issue we have noticed is that users need to login once to Cato SDP client and then "Always-on policy" gets enabled. But users are smart, t...

sdp

HiMeh

Cato Employee

8 months ago

Have you looked at pre-login? It works on Windows but not MAC. The client will fire up regardless of them not launching and if they login to their laptop we will pass the creds across the tunnel and the client will then be configured.

Pre-Login

Another approach that I like.....I leverage one of the main SaaS providers for the company. Say, SalesForce. Tell them you want your instance to be accessible from a static CATO IP address. Then setup a Network rule that access to the Application must be NAT'd via CATO IP. Your users that don't login to CATO are then blocked.....they will call the helpdesk and ask "why can I not get to SalesForce?!!?!" Helpdesk then helps the login to CATO to solve the problem and Always-On is enabled.

Cato_Fan_2024

Comet

7 months ago

That's what I suggested to our IT department but they're afraid of users being mad at them.

Forum Discussion

Cato SDP Client to be auto intelligent to login instead of manual logging

Recent Discussions

Microsoft Defender for Endpoint alerts no longer showing in Stories Workbench

Question About the "Internet as a Transport" Setting in Link Health Rules

ARM version?

What is 'Disable ACL For SIP' in Site Configuration.

Device posture basis domain name