How to Configure Local Database Authentication
37913
Created On 09/25/18 17:39 PM - Last Modified 06/12/23 08:31 AM
Resolution
Overview
This document describes how to configure local database authentication on the Palo Alto Networks firewall.
Steps
The local database allows the user login and password information to be entered directly into the Palo Alto Networks firewall database. In this example, user authentication will be configured for Captive Portal using the local database.
- Create local users:
Device > Local User Database > Users
- Assign the users to local groups:
Device > Local User Database > User Groups
- Create your Local Authentication Profile:
Go to Device > Authentication Profile and add your users/groups.
- Enable Captive Portal:
- Go to Device > User Identification > Captive Portal Settings
- Select your Authentication Profile (“localdb” in this example)
- Select Transparent for the Mode
- Configure the Captive Portal Policy:
Policies > Captive Portal
- Make sure to enable User-ID on the Source Zone
Go to Network > Zones and select the zone (“L3-Trust” in this example)
owner: bnitz