What is required for seamless authentication to intranet sites in tunnel mode?

For seamless authentication to intranet sites in tunnel mode, user-defined intranet sites in browser settings play a crucial role. When users access intranet resources, having these sites explicitly defined within the browser allows the Zscaler service to recognize and treat traffic to these sites differently, ensuring that it is tunneled properly. This configuration facilitates smoother access to internal resources without the need for repetitive credential entries or other cumbersome authentication processes.

In this context, the browser settings create a whitelist of sites that can be accessed through the secure tunnel, allowing for automated authentication processes like single sign-on (SSO) mechanisms to kick in. This minimizes user friction and enhances the overall user experience when navigating internal applications.

The other options typically do not contribute to seamless authentication for intranet access in the same effective manner. Remote desktop access configuration may enhance accessibility to certain systems but does not directly influence web-based authentication processes. VPN configuration changes can alter how secure connections are established but are not tailored for seamless access to specific intranet sites. Lastly, requiring manual credentials entry for each session complicates the user experience and defeats the purpose of having a seamless authentication process, making it less desirable.