Dear Friends !
i have restrice Internet Access to Clients but before they fall in to Captive Portal Page, they reach to google.com https certificate then PAN poral Certificate
as well the Clients are able to ping, traceroute destinations in Internet before they login to Captive Portal
i would like to configure PAN in such a way to 100% restrict client access to reach outside before thier authentication
You would need to migrate the security policies that allow external traffic to only allow 'known-users' and then ensure that your authentication policies are allowed to be accessed by any user. The captive portal would then authenticate the user and they would then be allowed to hit your other security entries since they are an identified user.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!