Access Features per Client OS and Version

This articles shows which Access features are supported on the Cato Clients according to the OS and Client version.

Cato Management Application Screen

Feature

Windows

macOS

iOS

Android

Linux

 

Directory Services > Registration Code

Registration Code

Yes

Yes

Yes

Yes

Yes

 

Client Access > Authentication

Multi Factor Authentication (MFA)

Yes

Yes

Yes

Yes

Yes

 

Single Sign-On (SSO)

Yes

Yes

Yes

Yes

Yes

 

External Browser Authentication

Yes

Yes

Yes

Yes

Yes

 

Embedded Browser Authentication

Yes (v5.2 and higher)

Yes (v5.1 and higher)

No

No

No

 

Access > User Awareness

User Awareness

Yes

(v5.4 and higher)

Yes

(v5.3 and higher)

No

No

   

Client Access > Always On

Always On

Yes

Yes

Yes

Yes

No

 

SSO with Always On

Yes

(v5.3 and higher)

Yes

Yes

Yes

No

 

Connect on Boot

Yes

No

No

No

Yes

(v5.2 and higher)

 

Enforcing Authentication Behind a Cato Site

Yes

(v5.8 and higher)

No

No

No

Yes

(v5.2 and higher)

 

Temporary Bypass (Bypass Code)

Yes

Yes

(v5.4 and higher)

Yes

(v5.1 and higher)

Yes

No

 

Temporary Bypass (User Controlled)

Yes (v5.9 and higher)

Yes (v5.5 and higher)

No

No

No

 

Client Recovery Mode

Yes (v5.9 and higher)

Yes (v5.5 and higher)

No

No

No

 

Access > Trusted Networks

Trusted Networks

Yes

(v5.8 and higher)

No

No

No

No

 

Access > Client Access > Device Authentication

Device Authentication

Yes

Yes

Yes

Yes

Yes

 

Access > Client Rollout

Upgrade Policy

Yes

Yes

 

No

 

No

Yes

(v5.1 and higher)

 

Access > IP Range Allocation Policy

IP Range

Yes

Yes

Yes

Yes

Yes

 

Client Access > Split Tunnel

LAN Blocking

Yes

(v5.3 and higher)

No

No

No

No

 

Split Tunnel

Yes

Yes

Yes

Yes

Yes

 

Client Access > Proxy Configuration File

Proxy Configuration File

Yes

Yes

Yes

No

No

 

Client Access > SDP User Feedback

SDP User Feedback

Yes

(v5.7 and higher)

Yes

(v5.7 and higher)

No

No

No

 

Client Access > Contact Support Policy

Contact Support Policy

Yes

Yes

No

Yes

No

 

Client Connectivity Policy and Device Posture

Device Checks

(See article for break down of supported checks per OS and version)

Yes

 

Yes

 

Yes

Yes

 

Yes

 

Client Connectivity Policy

Yes

Yes

Yes

Yes

Yes

 

Remote Internet Security with One Time Authentication

Yes

(v5.9 and higher)

No

No

No

No

 

MAC Authentication Policy

MAC Authentication

Yes

Yes

Yes

Yes

Yes

 

Pre Login

Pre Login

Yes

(v5.4 and higher)

No

No

No

No

 

Access > Client Access > Security Policy Notifications

User Notifications (App Control and Data Control)

Yes

(v5.10 and higher)

No

No

No

No

 

Was this article helpful?

2 out of 2 found this helpful

4 comments

  • Comment author
    Yaakov Simon
    • Edited

    Updated the article for the macOS Client:

    • macOS v5.1 supports Browser Authentication

     

  • Comment author
    Sarah Schulefand

    Updated the features supported on Android Clients according to version

  • Comment author
    Michael Goldberg
    • Edited

    Updated after end of life for Windows and macOS Clients earlier than v5.0

  • Comment author
    Michael Goldberg

    Updated Android Client support of Device Checks for Device Certificate 

Add your comment