https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/254492#M72230 <P>Hi,</P><P>&nbsp; that is fine but please publish a new article as TAC keep telling us that SSL decryption is required for captive portal</P><P>and as per experience, it is not a correct statement. New article can be helpful for TAC and users like us <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P><P>&nbsp;</P><P>thanks.</P><P>&nbsp;</P> Thu, 21 Mar 2019 12:23:45 GMT tirexxerit 2019-03-21T12:23:45Z https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/254201#M72163 <P>Hi,</P><P>&nbsp;</P><P>PAN has the following document [1] which says you need to have SSL decryption in order to redirect SSL pages to captive portal.</P><P>To me it doesn't seem to be accurate. Response page [2] workaround seems to be doing the same i.e without having an SSL decryption policy, I see that SSL pages are redirected to captive portal properly. What am I missing? I have found</P><P>several posts about this topic referring response page document too but PAN's document contradicts this.</P><P>I have created a PAN case for clarification/document update though, I would appreciate forum users' feedback.</P><P>&nbsp;</P><P>thanks.</P><P>&nbsp;</P><P>[1] <A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClH8CAK" target="_blank">https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClH8CAK</A></P><P>&nbsp;</P><P>[2] <A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFKCA0" target="_blank">https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClFKCA0</A></P> Tue, 19 Mar 2019 16:04:53 GMT https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/254201#M72163 tirexxerit 2019-03-19T16:04:53Z https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/254490#M72228 <P>That first article is simply very old and should have been archived, I'll go ahead and do that&nbsp;</P> <P>&nbsp;</P> <P>Thanks for reporting this!</P> Thu, 21 Mar 2019 10:55:37 GMT https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/254490#M72228 reaper 2019-03-21T10:55:37Z https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/254492#M72230 <P>Hi,</P><P>&nbsp; that is fine but please publish a new article as TAC keep telling us that SSL decryption is required for captive portal</P><P>and as per experience, it is not a correct statement. New article can be helpful for TAC and users like us <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span></P><P>&nbsp;</P><P>thanks.</P><P>&nbsp;</P> Thu, 21 Mar 2019 12:23:45 GMT https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/254492#M72230 tirexxerit 2019-03-21T12:23:45Z https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/519912#M107778 <P>What is the actual requirement? We are trying to redirect to a captive portal for an auth policy for https traffic and are being told by TAC this isn't supported unless we are decrypting all of the https traffic.&nbsp;</P> Tue, 01 Nov 2022 19:23:26 GMT https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/519912#M107778 mike.pochan 2022-11-01T19:23:26Z https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/519917#M107779 <P>I think TaC is wrong here. The 2nd link has always worked for me, although I will say I've found it not to work 100% of the time with https traffic. SSL decryption certain does help.</P> <P>&nbsp;</P> <P>I think this is an issue with 1st level TAC not knowing something.&nbsp;&nbsp;</P> Tue, 01 Nov 2022 19:31:16 GMT https://live.paloaltonetworks.com/t5/general-topics/captive-portal-ssl-decryption-policy-requirement/m-p/519917#M107779 ccscott 2022-11-01T19:31:16Z