ETP Client configuration settings

An ‚ÄčSIA‚Äč administrator defines the behavior of ‚ÄčETP Client‚Äč on the Client Configuration tab. When the administrator makes changes to the settings on this tab, the changes are applied to all installed clients in approximately 10 minutes.

The Client Configuration tab provides these fields:

  • Entitlement Code. Contains the entitlement code required to install ‚ÄčSIA‚Äč mobile client on enterprise computers and activate the client app on mobile devices.

  • Enable ‚ÄčETP Client‚Äč. This option enables ‚ÄčETP Client‚Äč and allows you to forward traffic to ‚ÄčSIA‚Äč.

  • Allow Users to Disable ‚ÄčETP Client‚Äč. If enabled, this setting lets end users disable ‚ÄčETP Client‚Äč on their device. End users can click Disable when viewing the advanced client settings.

  • Disable with Admin Approval. Requires that users enter an entitlement code to disable ‚ÄčETP Client‚Äč. You or another administrator must securely provide this code to users. This setting is available only if you enable Allow Users to Disable ‚ÄčETP Client‚Äč.

  • Allow Uninstall on Windows. If enabled, this setting allows end users to uninstall ‚ÄčETP Client‚Äč on their Windows machine. When this setting is disabled, an end user cannot uninstall ‚ÄčETP Client‚Äč unless they have the entitlement code.

  • Roll Back ‚ÄčETP Client‚Äč. Rolls back ‚ÄčETP Client‚Äč to the previous approved version. If you enable this setting to undo an upgrade, you need to also approve the previous ‚ÄčETP Client‚Äč version. For more information about rollback, see Software rollback.

  • Automatic Upgrades for Critical Patches. Upgrades ‚ÄčETP Client‚Äč with security patches to fix security vulnerabilities, support OS updates, and resolve critical issues to ‚ÄčETP Client‚Äč features. You can select to automatically apply these updates when they are available, or you can download, test, and approve the patch like any ‚ÄčETP Client‚Äč software upgrade. For more information, see Security patches.

  • ‚ÄčETP Client‚Äč Logging. Enable or disable ‚ÄčETP Client‚Äč logging so that the URLs and IP addresses accessed by the end user are not revealed.

  • Transparent Traffic Interception. Allows ‚ÄčETP Client‚Äč to intercept and capture traffic without modifying browser or operating system settings. DNS traffic is directed to ‚ÄčSIA‚Äč resolvers, while web traffic is directed to ‚ÄčSIA‚Äč Proxy. For more information, see Transparent traffic interception.

  • Bypass Non-HTTP Traffic. Allows non-HTTP traffic to bypass the proxy through any of the origin ports. This traffic is directed to the origin. You configure origin ports in the policy. For more information about origin ports, see Policy settings.

  • Configure ‚ÄčETP Client‚Äč as local computer web proxy. If enabled to do so, this setting configures ‚ÄčETP Client‚Äč as the local web proxy on the user's machine. You can choose to overwrite an existing local computer web proxy, overwrite settings when there's no proxy configured on the machine, or never modify these settings.

    • If you choose Yes to overwrite settings, ‚ÄčETP Client‚Äč is configured as the local web proxy. This setting is useful when your network does not have an on-premises proxy. This setting also removes any PAC file configuration that was set in the browser or operating system proxy settings. If you configure ‚ÄčETP Client‚Äč as a local proxy, you cannot restore PAC file or proxy settings by changing this setting to No or Only if there‚Äôs no local proxy.

    • If you choose Only if there's no local proxy, ‚ÄčETP Client‚Äč is configured as the local web proxy only when there's no local proxy already configured. You may want to select this option if you manage the on-premises proxy setting on some computers in your network.

    • If you choose No, ‚ÄčETP Client‚Äč is not configured as the local web proxy on the user's machine. You may want to select this option if you manage on-premises proxy settings on all computers in your network.

ūüďė

The policy setting Overwrite Device Proxy Settings functions the same as the Configure ‚ÄčETP Client‚Äč as local computer web proxy setting. However, the Overwrite Device Proxy Settings policy setting takes precedence over the Configure ‚ÄčETP Client‚Äč as local computer web proxy client setting.

  • Proxy Port. If ‚ÄčETP Client‚Äč is configured as the local web proxy, the user's computer listens for traffic on this port. By default, the proxy listens for traffic on port 8080. Even if ‚ÄčETP Client‚Äč is not configured as the local web proxy, this configuration still applies and may conflict with other applications that try to use this port.

If an ‚ÄčSIA‚Äč administrator makes changes to these behavior settings, the changes are applied to all installed clients in approximately 10 minutes.