Endpoint Protector Knowledge Base

Below you can explore FAQs related to Endpoint Protector and find the information you need. For any other additional questions, suggestions, and improvements please contact the support team.

How to utilize Deep Packet Inspection alongside ADFS, or other Authentication Services

In the event that an Authentication Server is being utilized in an environment, Deep Packet Inspection (if enabled) will need allowances for the Authentication resources. Otherwise, it may cause authentication attempts to timeout and/or fail. This is largely due to the fact that without the allowances an Authentication Service may detect the presence of a ‘man in the middle’, which is considered a security concern.

To properly configure for this setup, an Administrator can whitelist the Authentication Servers to allow for successful authentication.

To do so, follow these steps:
  1. Login to the Endpoint Protector Console
  2. Go to Denylists and Allowlists and then select Allowlists
  3. Select the Deep Packet Inspection tab and then click Add
  4. Fill in all required fields to define your ADFS resource(s) and then click Save
  5. Go to Content Aware Protection, Content Aware Policies, select your Policy and then click Edit
  6. Go to the Policy Allowlists section and click the Deep Packet Inspection tab
  7. Select the entry defined in step 4 and then verify your selected Policy Entities accuracy
  8. Click Save

Next: On the managed Endpoint, right-click the System Tray / Menu Bar item for Endpoint Protector and select 'Update policies now'.
Was this article helpful?
YES NO
Can you please tell us how we can improve this article.
Thank you for your feedback!