You think it would be easier to add a consent banner. You probably already looked under the Administration Console and Appliance Settings. Unfortunately, this setting is not easy to find and there is no global consent banner.
Start by navigating to the Administration Console of the Workspace ONE Access appliance.
Click on the Identity & Access Management tab, then click Setup.
Click on the worker link of the Connector.
Change the selection to Auth Adapters
Click the CertificateAuthAdapter link. You are redirected to the Authentication Adapter page. Note: it may take a few moments to load. If you see just a name text box, refresh the browser page.
Check the Enable Certificate Adapter check box to enable the certificate adapter.
Check the Enable Consent Form before Authentication checkbox to enable the consent form before authentication.
Add the Consent Form Content text to the text box.
Click Save.
Navigate to Identity & Access Management > Manage > Policies.
Click on the Policy Name in use.
Click Edit.
Click on Configuration.
In my case, I am only concerned with the Web Browser Device Type. Click All Ranges link on the line for Web Browser. Rearrange the policy rules as necessary. Make sure the then the user may authenticate using is set to Certificate even if smart cards are not being used.
Click SAVE, NEXT, and SAVE again.
Log off or open a new browser window and verify you receive the Consent Banner before authentication takes place.
