05-01-2021 12:29 PM - edited 05-01-2021 12:31 PM
Hello World,
I am simply attempting to setup a portal to where my guest are able to accept the terms of service in order to access the internet.
Is this possible with Palo Alto? I've done this on other vendor platforms and it wasn't rocket science to achieve this.
Upon my research I ran across the following links.
Any help would be greatly appreciated it even it it's just pointed me in the right direction. I also read that captive portal wasn't the best method to use to accomplish this.
Thanks for all responses.
05-03-2021 11:56 AM
I'm very much of the opinion that the firewall isn't the best way to do this, and while you can use Captive Portal in redirect mode and cookies to handle this sort of setup using solely the firewall it isn't what I would recommend.
05-24-2021 12:52 PM
If you know a little bit about html and javascript, this task should be possible relatively easy. What you need for this is a local user on the firewall and some adjustments in the captive portal html. In this html I would hide the default form created by paloalto and a new button instead. Then with jquery you set an action for this button that behind the scenes this local user is written into the hidden username and passwort field and then this html form input is sent to the normal destination defined by pan-os.
05-03-2021 11:56 AM
I'm very much of the opinion that the firewall isn't the best way to do this, and while you can use Captive Portal in redirect mode and cookies to handle this sort of setup using solely the firewall it isn't what I would recommend.
05-03-2021 01:40 PM
@BPry ,
Thank you for your response. While I agree the firewall isn't the best way to do this and my apologies for bringing up other vendors. However, my experience with Sophos, WatchGuard and Fortinet is that they all have this common feature built in.
Again, not a deal breaker. Not even a big issue. I personally thought I was missing something when trying to build out the design for the guest wireless network via Palo.
Thanks
05-24-2021 12:52 PM
If you know a little bit about html and javascript, this task should be possible relatively easy. What you need for this is a local user on the firewall and some adjustments in the captive portal html. In this html I would hide the default form created by paloalto and a new button instead. Then with jquery you set an action for this button that behind the scenes this local user is written into the hidden username and passwort field and then this html form input is sent to the normal destination defined by pan-os.
05-24-2021 01:43 PM
Thanks for the response. I just installed another firewall that already had it built in. The customer didn't really care about which vendor I proposed to them as a solution.
I will test out your solution in my lab first before trying it out on someone else's network. Again, thanks for all responses.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
