How to Configure Local Database Authentication

How to Configure Local Database Authentication

14290
Created On 09/25/18 17:39 PM - Last Updated 08/05/19 20:36 PM


Resolution

Overview

This document describes how to configure local database authentication on the Palo Alto Networks firewall.

Steps

The local database allows the user login and password information to be entered directly into the Palo Alto Networks firewall database. In this example, user authentication will be configured for Captive Portal using the local database.

  1. Create local users:

    Device > Local User Database > Users

    del.JPG.jpg

  2. Assign the users to local groups:

    Device > Local User Database > User Groups

    del.JPG.jpg

  3. Create your Local Authentication Profile:

    Go to Device > Authentication Profile and add your users/groups.

    del.JPG.jpg

  4. Enable Captive Portal:

    del.JPG.jpg

    1. Go to Device > User Identification > Captive Portal Settings
    2. Select your Authentication Profile (“localdb” in this example)
    3. Select Transparent for the Mode
  5. Configure the Captive Portal Policy:

    Policies > Captive Portal

    del.JPG.jpg

  6. Make sure to enable User-ID on the Source Zone

    Go to Network > Zones and select the zone (“L3-Trust” in this example)

    del.JPG.jpg

owner: bnitz



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClHcCAK&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language