Some applications do not trust certificates presented by proxies, resulting in dropped connections. In such cases, it's necessary to bypass specific domains from using the proxy. These domains can be added to the bypass list within the admin console under Deployment -> Windows and Mac -> Bypass these domains. After adding the domains, please disconnect and reconnect wifi to make sure the latest PAC file will be fetched.
Below are a few common domains that may need to be bypassed for different applications:
Renaissance
Sora app on iPad
overdrive.com
NWEA browser
nwea.edu
b2clogin.com
escreenb2cprodstorage.blob.core.windows.net
myescreenb2c.b2clogin.com
escreencdn.z20.web.core.windows.net
Chrome Remote Desktop
instantmessaging-pa.clients6.google.com
Cricut
SeeSaw
seesaw.me
Adobe Creative
adobe.com
adobe.io
adobelogin.com
adobe-api.arkoselabs.com
adobess.com
DisneyPlus
disney.connections.edge.bamgrid.com
Cengage App
Office 365 sign in
Bluebook
collegeboard.org
ArbiterSports
asprodpublicstorage.blob.core.windows.net
Hillyard
pprodpublic01.blob.core.windows.net