HackerOne

These guides assume you already have the WARP Client installed. If you don't, please go to our <a href="https://docs.hackerone.com/en/articles/8544971-installing-the-cloudflare-warp-root-ca">Warp Client Install</a> document and follow the instructions there. To find the Cloudflare team name needed for this configuration, go to Profile &gt; User Settings &gt; Gateway.

Note: These directions rely on <a href="https://developers.cloudflare.com/cloudflare-one/team-and-resources/devices/warp/deployment/manual-deployment/#enroll-using-the-cli" rel="nofollow noopener noreferrer" target="_blank">Cloudflare’s documentation</a>, which they update independently. Our steps may occasionally fall out of sync; if something doesn’t work as expected, we recommend checking Cloudflare’s latest instructions.

Go to Account preferences in the client, and click Login with Cloudflare for Teams.

Fill in the team name and click OK: ​

Login to the WARP authentication website (pops up automatically). Use your whitelisted "@wearehackerone.com" email address. ​

1. Note: Please use your @wearehackerone.com alias.

Authentication successful, register client into the program

Click the "Open Cloudflare WARP" button ​

1. The client should now display "Zero Trust" instead of "WARP" ​

1. Go to Account preferences in the client, and click Login with Cloudflare for Teams.
2. Fill in the team name and click OK: ​
 
 
3. Login to the WARP authentication website (pops up automatically). Use your whitelisted "@wearehackerone.com" email address. ​
 
 1. Note: Please use your @wearehackerone.com alias.
4. Authentication successful, register client into the program
5. Click the "Open Cloudflare WARP" button ​

6. Client changed
 1. The client should now display "Zero Trust" instead of "WARP" ​

Go to Account preferences in the client.

Click the Account tab, then click Login with Cloudflare Zero Trust. ​

Fill in the team name and click Done:

Note: Please use your @wearehackerone.com alias.

The client should now display "Zero Trust" instead of "WARP" ​

1. Go to Account preferences in the client.
2. Click the Account tab, then click Login with Cloudflare Zero Trust. ​

3. Fill in the team name and click Done:
 

4. Login to the WARP authentication website (pops up automatically). Use your whitelisted "@wearehackerone.com" email address. ​
 
 Note: Please use your @wearehackerone.com alias.
5. Authentication successful, register client into the program
6. Click the "Open Cloudflare WARP" button ​

7. Client changed
8. The client should now display "Zero Trust" instead of "WARP" ​

Enroll into Zero Trust using the team domain: ​

Navigate to the domain page, add your whitelisted e-mail address, get the one-pin, and connect ​

A browser window should open at the following URL: https://[team-name].cloudflareaccess.com/warp If the browser fails to open, please visit the URL above directly in your browser.

Note: Please use the same email you registered with HackerOne. ​

1. CLI-only login: Alternatively if you have CLI-only access, you can use: ​
 warp-cli teams-enroll [team-name]
 ​
 After this open the URL listed in the output on your local machine, or via a terminal-based browser. Then within 30 seconds of authenticating. Copy the token and use it in the terminal: ​
 
 warp-cli registration token "com.cloudflare.warp://[team-name].cloudflareaccess.com/auth?token=[token]
 
2. If the timer runs out before you enter the token you will get the following error: ​
 Error: Invalid JWT provided.

1. Enroll into Zero Trust using the team domain: ​
 warp-cli registration new [team-name]
 
2. Navigate to the domain page, add your whitelisted e-mail address, get the one-pin, and connect ​
 A browser window should open at the following URL: https://[team-name].cloudflareaccess.com/warp If the browser fails to open, please visit the URL above directly in your browser.
 Note: Please use the same email you registered with HackerOne. ​
 1. CLI-only login: Alternatively if you have CLI-only access, you can use: ​
 warp-cli teams-enroll [team-name]
 ​
 After this open the URL listed in the output on your local machine, or via a terminal-based browser. Then within 30 seconds of authenticating. Copy the token and use it in the terminal: ​
 
 warp-cli registration token "com.cloudflare.warp://[team-name].cloudflareaccess.com/auth?token=[token]
 
 2. If the timer runs out before you enter the token you will get the following error: ​
 Error: Invalid JWT provided.
 
3. Connect the WARP Client

warp-cli connect warp-cli status -&gt; Must show "Status update: Connected" warp-cli registration show -&gt; will show if connecting to account was successful

It is possible to check the split-tunnel policy from the client.

In Settings, go to Advanced

Click on the button Split Tunnel ​

1. In Settings, go to Advanced
2. Click on the button Split Tunnel ​

The same is possible from the command line:

Merged configuration: Always On: true Switch Locked: false Mode: WarpWithDnsOverHttps Cloudflare for Families: Off Disabled for Wifi: false Disabled for Ethernet: false Gateway Id: [gateway_id] Onboarding: true Include mode, with hosts/ips: ifconfig.me Fallback domains: home.arpa ...

Hackers: Configure your WARP Client for specific programs

Configure Client for a Specific Program

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Configure Client for a Specific Program

Windows

macOS

Linux

Troubleshooting

Split Tunnel Policy