- Access exclusive content
- Connect with peers
- Share your expertise
- Find support resources
04-05-2010 02:52 AM
Hi All,
I am new to the palo Alto community and would like to say that it is looking good. We have a demo unit installed on our network at the moment, but have a few questions that I sure the people in this forum will be able to answer. Is there any way to manage the currently connected users that have logged on using the captive portal ( is there any page or setup that we can view any current logged in live user threads for managing those authenticated users? ) as in being able to disconnect them right away and force them to login again. We are using Windows 2008 as a radius server for the captive poratl logins with the agent installed on the same server. My other question is, after the user logs in using the captive portal, how long is it before that times out and they have to login again.
We are using software version 3.0.8
Thanks,
Billy.
04-05-2010 02:08 PM
Hello Billy,
currently there isn't a way to show only the currently active captive portal users.
You can take a look at pages 19-22 of the attached document.....particulary page 21.
This will give you the command from the cli to look at users on the Paloalto device and their authentication method.
It will also show you page where yo can set the expiration for a captive portal user.
thanks,
Stephen
09-12-2012 11:44 AM
You should be able to do a CLI command " show user ip-user-mapping type CP all" to see only the captive portal users. Or you could run "show user ip-user-mapping all | match CP" as an alternative
You could "force" a disconnect by clearing the particular CP user from the user cache database by using the CLI command "clear user-cache ip <IP>".
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!