Palo Alto Networks Knowledgebase: Captive Portal NTLM Authentication Fails With IE11

Captive Portal NTLM Authentication Fails With IE11

1955
Created On 02/07/19 23:37 PM - Last Updated 02/07/19 23:37 PM
User-ID
Resolution

Symptom

After upgrading to Internet Explorer 11 (IE11), NTLM authentication fails and the client is redirected to the web-form.

Cause

In IE11 it appears the way intranet sites are detected has been changed. By default, the auto-detect is turned off, among other settings. The change causes the NTLM authentication portal to be identified as an internet resource by the browser. Since NTLM authentication is only allowed by intranet resources, authentication will fail.

Workaround

A workaround is to open the "Local intranet" zone settings and add the Captive Portal redirect host. This will help identify the redirect page as intranet and trustworthy, and restore NTLM functionality.

2014-06-19_17-18-35.png

owner: tpiens



Attachments
Actions
  • Print
  • Copy Link

    https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cm5JCAS&refURL=http%3A%2F%2Fknowledgebase.paloaltonetworks.com%2FKCSArticleDetail

Attachments
Choose Language