Simplified Clientless Access Management

Cloudflare has streamlined its approach to providing clientless access for private applications within its Access service. The new Allow clientless access setting eliminates the need for administrators to create separate bookmark applications and manage complex URL prefixes.

How It Works

Before this update, organizations had to:

• Create a separate bookmark application
• Manually construct prefixed Clientless Web Isolation URLs (e.g., https://<your-teamname>.cloudflareaccess.com/browser/https://10.0.0.1/)
• Expose this bookmark to all users in the App Launcher, even those without underlying application access

Now, administrators can:

• Enable Allow clientless access directly in private self-hosted application settings
• Have users who pass Access policies automatically see the application tile in their App Launcher
• Maintain consistent access control — only users with both Access application permissions AND remote browser permissions can access the link

User Experience Improvements

Users now benefit from a more intuitive workflow: applications appear in their App Launcher with proper access controls applied, and the clientless access mechanism is transparent. The integration ensures that access policies are consistently enforced across both traditional and clientless access methods.