In the Web Authentication layer, add a new rule above the authentication rule that prompts for authentication.
In the Destination column, right click and select Set > New > Request URL.
The VPM displays the Add Request URL Object dialog. You can do a simple match, regular expression match, or advanced match. Generally the simple match is sufficient.
In the simple match URL, enter the URL listed in the Cause section in this article for bypass authentication then click Add and Close. Repeat this step as needed for additional URLs.
In the Destination column, right click and click Set. Select New > Combined Destination Object. Select the URL that was added and click Add. All the selected URLs appear in the "At least one of these objects" box. Click OK.
In the Action column, right click and select Set > Do Not Authenticate and click OK. The rule should now read that any request for the URLs will not be authenticated.
To configure in Local Policy, use the following CPL: