LogoLogo
  • Introducing dope.swg
    • Changing the Rules...
    • Quick Start Guide
      • Create a dope.swg Account
      • Get Started with the dope.endpoint
      • Import User and Group Data
      • Create a dope.swg Web Policy
    • Mitre ATT&CK and Nist CSF
  • dope.console
    • Analytics
      • Overview dashboard
      • Policy View
      • Productivity
      • Shadow IT
      • Detail View
    • dope.swg Policy
      • Editing the Base Policy
      • Adding Policy Exceptions
      • Assigning a Block Page
      • Creating Custom Categories
      • URL Bypass List
      • Application Bypass List
      • Default Bypass List
      • Cloud Application Control (CAC)
        • Microsoft O365
        • Google
        • Box
        • Salesforce
        • Dropbox
        • Slack
        • WebEx
      • Custom Policy
      • Policy Assignment
      • Policy Inheritance and Customization
    • CASB Neural
      • Microsoft 365 - Authentication
      • Google - Authentication
      • CASB DLP
        • DLP Files Table
    • Endpoint Manager View
      • Searching the View
      • Filtering and Sorting the Endpoint View
      • Endpoint Count
      • Running Diagnostics
      • Disable Endpoint
    • Settings
      • General
      • Block Pages
      • Endpoints
      • Users
        • Importing from Google
        • Why not SAML & SCIM?
      • Audit Log
      • SIEM Integration
        • Category & Verdict Mappings
      • API Client Credentials
      • Billing Details
    • Notifications
      • SSL Errors
  • dope.endpoint
    • Trusted Process Names
    • Generate Diagnostics
    • Disable Endpoint
    • Installing using MDM on Mac
      • Using JAMF
      • Using Kandji
      • Using Intune
    • Installing using Intune on Win
    • Mac Installer
      • Installation Process - Silent
      • Uninstall
      • Endpoint Authentication
    • Windows Installer
      • Installation Process - Silent
      • Uninstall
      • Endpoint Authentication
    • dope.endpoint UI
      • Windows UI
      • macOS UI
    • Automatic Updates
  • Release Notes
  • DOPE.APIs
    • Public API Specification
Powered by GitBook
On this page
  • Endpoint Authentication
  • User & Group Import
  • Permissions required for Microsoft
  1. dope.console
  2. Settings

Users

PreviousEndpointsNextImporting from Google

Last updated 8 months ago

To unlock all dope features, there are two easy steps:

  1. Enable Endpoint Authentication: Forces users to authenticate with corporate accounts before they can access the Internet and automatically applies correct web security policy

  2. User & Group Import: Allows for User/Group-based policies, and for analytics

Endpoint Authentication

This is a one-time authentication for end-users. We do not prompt for re-authentication unless a device has been .

Windows

Windows users will receive a notification in the lower-right to authenticate. If they do not, web traffic will be blocked (), and users will be prompted to authenticate

Mac

Mac users will receive a pop-up. If this window is closed, it will automatically reopen to prompt the user to authenticate. Web traffic will be blocked (unless bypassed), until this is complete

User & Group Import

See Import User and Group Data for a more detailed breakdown.

The Google or Microsoft 365 admin must authorize access to the users and groups for the import. Once authenticated, dope.security will import your users and groups.

Special steps are required on Google (See Importing from Google).

Every 15 minutes, all user & group updates are automatically synchronized. i.e. any employee who joins, leaves, or changes groups will automatically update

Without importing users and groups into the console, the following functionality will not be available:

  • Custom Policies

  • Policy Exceptions

  • Shadow IT & Productivity Analytics

Permissions required for Microsoft

Click & save to enable SSO
With very restrictive 365 accounts, you must add the following permissions for Microsoft