In this video, I demonstrate how to setup an expression policy to check if a client's IP address is local and if so, bypass 2-factor-authentication/multi-factor-authentication.
...for those that want to copy and paste (first line can be whatever you want to name it):
Name: local-network-check
Expression: return ak_client_ip.is_private
OR
If you want to use your FQDN/registered DNS record instead of local IP address in your browser and still be able to bypass because you are hosting it on your own public IP address and accessing it from that very same IP address, use this expression ( NOT RECOMMENDED if you DO NOT HAVE a STATIC PUBLIC IP ADDRESS so do this at your own risk; I will not be responsible):
return ak_client_ip == ip_address('your.public.ip.address') or ak_client_ip.is_private
31 июл 2024