[CF1] CWI step 3 expansion

[deadlypants1973]

Summary

PCX-17493

Screenshots (optional)

Documentation checklist

• The documentation style guide has been adhered to.
• If a larger change - such as adding a new page- an issue has been opened in relation to any incorrect or out of date information that this PR fixes.
• Files which have changed name or location have been allocated redirects.

[hyperlint-ai]

Howdy and thanks for contributing to our repo. The Cloudflare team reviews new, external PRs within two (2) weeks. If it's been two weeks or longer without any movement, please tag the PR Assignees in a comment.

We review internal PRs within 1 week. If it's something urgent or has been sitting without a comment, start a thread in the Developer Docs space internally.

---

PR Change Summary

Expanded the Clientless Web Isolation documentation with detailed setup instructions and enhanced clarity on browser isolation policies.

• Added step-by-step instructions for configuring Clientless Web Isolation permissions and policies.
• Updated the introduction to include a link to Secure Web Gateway HTTP policies.
• Clarified the process for saving and applying access policies.

Modified Files

• src/content/docs/cloudflare-one/policies/browser-isolation/setup/clientless-browser-isolation.mdx
• src/content/docs/cloudflare-one/policies/browser-isolation/setup/index.mdx

---

How can I customize these reviews?

Check out the Hyperlint AI Reviewer docs for more information on how to customize the review.

If you just want to ignore it on this PR, you can add the hyperlint-ignore label to the PR. Future changes won't trigger a Hyperlint review.

Note specifically for link checks, we only check the first 30 links in a file and we cache the results for several hours (for instance, if you just added a page, you might experience this). Our recommendation is to add hyperlint-ignore to the PR to ignore the link check for this PR.

[github-actions]

This pull request requires reviews from CODEOWNERS as it changes files that match the following patterns:

Pattern	Owners
/src/content/docs/cloudflare-one/policies/browser-isolation/	@maxvp, @ranbel, @cloudflare/pcx-technical-writing

[github-actions]

Preview URL: https://9b0ca1c5.preview.developers.cloudflare.com
Preview Branch URL: https://kate-fixes-cwi3.preview.developers.cloudflare.com

Files with changes (up to 15)

Original Link	Updated Link
https://developers.cloudflare.com/cloudflare-one/policies/browser-isolation/setup/clientless-browser-isolation/	https://kate-fixes-cwi3.preview.developers.cloudflare.com/cloudflare-one/policies/browser-isolation/setup/clientless-browser-isolation/
https://developers.cloudflare.com/cloudflare-one/policies/browser-isolation/setup/	https://kate-fixes-cwi3.preview.developers.cloudflare.com/cloudflare-one/policies/browser-isolation/setup/

[human3]

LGTM

[jroyal]

This part is only necessary if you are doing it for apps through the normal Access part of the dash. For the clientless BISO application its not needed.

[jroyal]

To clarify.

Setting > Browser Isolation> select Manage next to Permissions. This does not require the isolate setting in Access policies. It is managing the login page for .cloudflareaccess.com/browser.

If you enable the isolate toggle in a policy and include that policy on a normal self-hosted application then we will isolate that for all users that match that policy.