12-24-2012 08:45 AM
Hi,
I am playing with my little PA-200 and wanted to try user based policies. I added a couple of users to the local user database and grouped them into user groups. Now when I create a new policy (or modify an existing one), the source-user field stays empty, my users don't show up so I can't add them. Even when I start typing (for autocomplete) I don't get any results.
Captive Portal, auth profile etc. are all configured as per documentation, and the interface is configured for UserID.
What am I missing here?
Thanks
Sascha
12-24-2012 09:58 AM
HI Sascha,
I can replicate the same but i believe/confirmed that you can manually type the local users/groups in the policy and it works fine. One important thing to note is you can use these local user db only for ssl vpn users and captive port users.
Thank you.
Subijith Raghunandan.
12-24-2012 10:36 AM
Hi,
thanks. But I can't confirm this. I type in the full user/group name but it still doesn't work (I am using captive portal for this). By the way, this is PanOS 5.0.
Sascha
12-24-2012 10:41 AM
Hi Sascha,
Can you try with users only and the authentication profile for CP has local db selected right.
Thank you,
Subijith Raghunandan.
12-24-2012 10:45 AM
It has local DB selected. I tried with users only, but to no avail. If enabled with a typed in user and generate traffic, I don't get a captive portal page and traffic is denied (confirmed via traffic log).
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!