This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Enhanced Security Measures in Place:   To ensure a safer experience, we’ve implemented additional, temporary security measures for all users.

Captive portal 403 forbidden

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements

Captive portal 403 forbidden

Go to solution
Charlie80
L2 Linker

‎04-28-2023 03:03 AM - edited ‎04-28-2023 06:42 AM

Hello,

I've configured a new Captive portal but when i'm trying to reach it I receive 403 forbidden.

The CP is enabled on the inside interface where the traffic is coming in.

The zone have the user id enabled.

The interface have the Management profile with User-id and Response page on.

I've created a Auth Rule with Default-web-form but when I test it via Web-browser the hit-count still at 0. The policy test works and increase the hit-counter.

 

Note. I've already configured a Captive portal on another Cluster and it works. The configuration seems the same.

 

Update: I've tryied on my test server to reach the primary Captive portal that is in production for 5 years but i received the same response "403 forbidden".... Browser problem? Could be the Certificate? (the test server don't have the Customer CA)

0 Likes Likes
1 accepted solution

Accepted Solutions

Go to solution
vivek101
L0 Member

‎04-29-2023 03:35 AM

Hi @Charlie80,

 

Here are a few things you can do to solve the problem:

 

  • Check the setup of the Captive Portal: Check that the Captive Portal configuration, including the authentication rules and response page, is valid and complete. Check that the Captive Portal is enabled on the correct interface and that the zone/user ID is configured properly.
  • Examine the Management profile settings: Check that the Management profile has the User ID and response page options enabled. Ascertain that the policy test functions as expected.
  • Check the certificate: Check that the Captive Portal's certificate is genuine and trusted by the web browser. If the test server lacks the customer CA, it may not trust the certificate, resulting in the "403 Forbidden" message.
  • Examine the web browser: Try using a different web browser to access the Captive Portal, or delete the cache and cookies in the current web browser. Because to security settings or cached data, the browser may be preventing the Captive Portal.
  • Examine the firewall policies: Check that the firewall policies allow traffic to reach the Captive Portal and that there are no competing policies or rules that are preventing traffic from reaching the Captive Portal.
  • Examine the Captive Portal logs: Examine the Captive Portal logs for any problems or warnings that could point to the source of the "403 Forbidden" error.

 

Hopefully, one of these steps will assist you in identifying and resolving the Captive Portal issue.

View solution in original post

0 Likes Likes
3 REPLIES 3

Go to solution
vivek101
L0 Member

‎04-29-2023 03:35 AM

Hi @Charlie80,

 

Here are a few things you can do to solve the problem:

 

  • Check the setup of the Captive Portal: Check that the Captive Portal configuration, including the authentication rules and response page, is valid and complete. Check that the Captive Portal is enabled on the correct interface and that the zone/user ID is configured properly.
  • Examine the Management profile settings: Check that the Management profile has the User ID and response page options enabled. Ascertain that the policy test functions as expected.
  • Check the certificate: Check that the Captive Portal's certificate is genuine and trusted by the web browser. If the test server lacks the customer CA, it may not trust the certificate, resulting in the "403 Forbidden" message.
  • Examine the web browser: Try using a different web browser to access the Captive Portal, or delete the cache and cookies in the current web browser. Because to security settings or cached data, the browser may be preventing the Captive Portal.
  • Examine the firewall policies: Check that the firewall policies allow traffic to reach the Captive Portal and that there are no competing policies or rules that are preventing traffic from reaching the Captive Portal.
  • Examine the Captive Portal logs: Examine the Captive Portal logs for any problems or warnings that could point to the source of the "403 Forbidden" error.

 

Hopefully, one of these steps will assist you in identifying and resolving the Captive Portal issue.

0 Likes Likes

Go to solution
ThelmaBaxley
L0 Member

‎05-02-2023 10:00 PM

You can look through previous suggestions and if similar thing exists, then upvote it or add your own there. MyAscension

0 Likes Likes

Go to solution
shrikant.jadhav
L0 Member

‎09-26-2024 10:16 PM

Dear Paloalto Support team,

Recently we face issue with Captive Portal is the user authentication page unable to pop. only connect option is pop, while clicking on connect, it will open new tab as same. we need to use old version browser. kindly help to resolve the same issue as quick as possible.

 

0 Likes Likes
  • 1 accepted solution
  • 4972 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks