The customer found from the Cloud SWG reports that some requests have a verdict of "silent_denied" yet they have no such verdict configured in their Cloud SWG portal policy.
Cloud SWG policy managed by the Portal.
The Cloud SWG portal policies are not simple customer policies that are implemented on the Cloud SWG proxies.
They are built on:
The silent_denied verdicts that can be encountered by customer are mainly caused by Cloud SWG "Deny unknown protocols" policy that is set to ensure we don't allow random protocols to be tunnelled over the service.
This silent_denied verdict will be matched when:
There are other silent_denied verdicts (not to be listed here) that can be encountered for a few specific url's, but those are very specific and not likely to be hit randomly by customers.