Company logoHelp Center
Visit www.threatlocker.com

Creating a Secure Network Policy - Secure SaaS or Cloud App Access

2 min. readlast update: 03.20.2026

Log in to the ThreatLocker Portal.

Navigate to the Network Control section and select Network Control Policies.

Select the 'New Policy' button in the top left corner.

The Create Secure Network Policy window will open, where you can select which type of policy to create.

Select 'Create Secure SaaS or Cloud App Access' to create a policy to control access to your SaaS or cloud apps (such as Microsoft 365, GitHub, Slack) through Secure Network. Each SaaS or cloud app selected will count towards your SaaS limit.

The Secure SaaS or Cloud App Access wizard will open.

1. Select SaaS Application: Select the Saas Application you wish to create a policy for.

Please Note: You will need to ensure that the SaaS app selected and any access policies for the app allow traffic from ThreatLocker.

Once you have selected the desired SaaS application, you can select to set an expiration date (A) for the policy or to apply the policy based on a schedule (B). Leave these unchecked to allow the policy to always be active and never expire.

2. Add Organization Devices: The 'Add Organization Devices' dropdown contains a list of all your Organizations, Computer Groups, Computers, and Mobile Devices.  Select as many as desired and they will be added into the 'Add Organization Devices' box, and wil be permitted to access the selected SaaS application via the Secure Network.

3. Local Users and Groups: By default, 'Everyone' is selected.  If you wish to scope access to specific users/groups, input the desired local Users and Groups. Once set, only the specified Users and Groups will be permitted to initiate the connection defined in this policy.

4. Authorize Local Apps:  By default, 'All Applications' will be selected. If you wish to limit this policy to specific local applications, select the desired application or applications from the type-searchable dropdown list. For most SaaS deployments, leaving 'All Applications' selected is sufficient.

When all fields have been configured, select the blue 'Next' button. The Secure Network Policy Summary window will open.

Make any necessary edits, including adding a description if desired, and then click the blue 'Create' button to add this policy to your Secure Network policy list.

 

Zero Trust Network Access (ZTNA) and Zero Trust Cloud Access (ZTCA) Frequently Asked Questions

Was this article helpful?