Palo Alto Networks Knowledgebase: How to Configure Captive Portal

How to Configure Captive Portal

7570
Created On 02/07/19 23:53 PM - Last Updated 02/07/19 23:54 PM
Device Management Initial Configuration Installation QoS Zone and DoS Protection
Resolution

Overview

The attached document gives step-by-step instructions for configuring captive portal.  Four scenarios are covered:

  1. Web form login page- Transparent mode
  2. Web form login page - Redirect mode
  3. Client certificate
  4. NTLM authentication

Steps

  1. Starting with PAN-OS 5.0, the action previously named "captive-portal" is now "web-form." Only the name has changed. The web-form page prompts the unknown user for credentials.
  2. The action previously named "ntlm-auth" is now "browser-challenge.".Only the name has changed. The browser-challenge action authenticates users behind the scenes through the NTLM support in the browser (for example, IE and Firefox).

Note: The 'no-captive-portal' action remains unchanged. When the initial traffic is https, Captive Portal will not be presented because of encryption. For HTTPS traffic to have Captive Portal launched, enable decryption.
For more details reference the following link How to Implement and Test SSL Decryption

 

owner: tlozano



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFlCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Choose Language