Access Policies Now Available for Bookmarks
Cloudflare has extended its Access policy framework to bookmark applications, enabling fine-grained control over bookmark visibility in the App Launcher. This enhancement allows organizations to tailor application access based on user identity, device posture, group membership, and other policy criteria.
What Changed
Bookmark applications can now have Access policies assigned to them, giving administrators the ability to:
- Control visibility per user — Users see only the bookmarks they're authorized to access, reducing confusion and improving security by preventing accidental exposure to sensitive resources.
- Restrict sensitive resources — Bookmarks to internal tools, partner portals, or restricted services can be limited to specific groups, identity providers, or devices meeting particular posture requirements.
Supported Configurations
Bookmarks support all standard Access policy configurations except:
- Purpose justification
- Temporary authentication
- Application isolation
Backward compatibility is maintained: bookmarks without an assigned policy remain visible to all users in the organization.
Getting Started
To add policies to bookmarks, navigate to your Access policies configuration and apply the same rules you'd use for other protected applications. Refer to the Add bookmarks documentation for detailed instructions.