Palo Alto Networks Knowledgebase: How to Configure Captive Portal

How to Configure Captive Portal

(1902 Views)
Created On 09/25/18 17:27 PM - Last Updated 09/25/18 23:10 PM
Categories:  Device Management,  Initial Configuration,  Installation,  QoS,  Zone and DoS Protection

Issue:


Solution:


Overview

The attached document gives step-by-step instructions for configuring captive portal.  Four scenarios are covered:

  1. Web form login page- Transparent mode
  2. Web form login page - Redirect mode
  3. Client certificate
  4. NTLM authentication

Steps

  1. Starting with PAN-OS 5.0, the action previously named "captive-portal" is now "web-form." Only the name has changed. The web-form page prompts the unknown user for credentials.
  2. The action previously named "ntlm-auth" is now "browser-challenge.".Only the name has changed. The browser-challenge action authenticates users behind the scenes through the NTLM support in the browser (for example, IE and Firefox).

Note: The 'no-captive-portal' action remains unchanged. When the initial traffic is https, Captive Portal will not be presented because of encryption. For HTTPS traffic to have Captive Portal launched, enable decryption.
For more details reference the following link How to Implement and Test SSL Decryption

 

owner: tlozano

Attachments:

Actions:
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFlCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Change Language: