ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Web Security Service Access Methods


Article ID: 168150


Updated On:


Web Security Service - WSS


What are the current Access methods that the Web Security Service (WSS) has and a brief description of them?



Access Methods

  1. Explicit Proxy (PAC File Management Service/SEP)
  2. Unified Agent (Windows/Mac)
  3. iOS and Android (SEP-Mobile)  
  4. Proxy Forwarding (ProxySG/ASG/Microsoft)
  5. IPsec/VPN/firewall/Explicit over IPsec
To assist you when considering how to send traffic to the WSS, this document discusses the use cases and best practices for each Access Method.


Most Access Methods require the installation of the Auth Connector (BCCA), which runs on a Windows AD server (Member Server or Domain Controller), or integration with existing SAML to identify users.

Fixed Location Connectivity:

VPN/IPsec; Explicit Over IPsec; Proxy Forwarding; SD-WAN

Connectivity: Fixed Location Methods


Unified Agent; SEP (w/Seamless Auth); Cloud Connect Defense (Windows 10 app); Mobile (SEP-Mobile, Android app, ChromeOS). Select any of these options from the following link for more details:

Connectivity: Endpoints