Okay, Captive Portal was not triggered because the destination was HTTPS, and SSL decryption is required for Captive Portal to "redirect" HTTPS traffic. Also, notice that UserID database is always updated with latest user account logged. That could cause problem in "big" environment where multiple accounts (normal, priviledge ..) are required to touch specific ressources. I think that dedicated firewall(s) or VSYS isolated from the "normal USERID Database" could be a solution to front specific secure environment, like critical database, PCI... etc.
... View more