Random users in China reports authentication issues in China. Upon verification we noticed authentication request to ZPA fails.
Further analysis in packet capture, shows that DNS response to samlp.private.zscaler.com resolves to Ip which are hosted in AWS Korea.
Zscaler TAC says China’s Great firewall is often behind this issue and its out of their control.
Knowing these challenges in China, does Zscaler come up with any preventive measures that prevails the Service, like in-housing the supporting services (auth servers) in china?
Note: Due to Corona Outbreak, more of our end users tend to use remote access capabilities and we couldn’t commit a 100% available service.