How to make work the Palo Alto Captive portal after users logged in to Global protect. ?
Users who got connected to GP should get captive portal auth page while they try to use internet.
Is there any way to achieve this ?
in the policy > authentication rulebase, create a new rule (at the top of your rulebase) that has 'users' set to 'any' or 'known-users', then set the action to 'default-web-form'
I got your ref from GOT. Good one.
I already configured as per you said,
i have configured authenticatoin rulebase and placed on top and also i have configure agent and captive portal accordingly, but it is not working.
Do u have any document to configure this ??
It will be in my book, stay tuned
Did you set a management profile on the tunnel interface with "response pages" enabled?
How did you set the captive portal (redirect, transparent) and how did you configure the auth rule?
Could you try setting redirect mode and set the ip of the tunnel interface
Make sure security policy allows the Cp connection
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!
The Live Community thanks you for your participation!