Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Authentication using Captive Portal
Content Gateway provides a Captive Portal option when adding an authentication rule. Captive Portal may be especially helpful in handling mobile and other personal devices brought in to your TRITON AP-WEB networks.
This feature:
*
*
*
*
Note that most applications on mobile devices do not share cookies. For those applications, IP-based identification will be required. See the Credential Cashing section of Global authentication options for more information.
Also, for web applications that use Ajax, where Ajax is configured to prevent cookies, cookie-mode cannot support sites that include cross-origin requests (CORS) that rely on Ajax.
*
*
*
When adding an authentication rule (see Creating an authentication rule), a new option is provided. Navigate to Configure > Security > Access Control > Authentication Rules and click Enabled for HTTPS/HTTP Authentication page next to Captive Portal to select the feature. Users who match the rule are redirected to the new web portal authentication page.
*
*
Note that when Content Gateway receives an unauthenticated POST request from a user who matches a Captive Portal rule, it redirects the user to the web portal authentication page and does not record the POST data. After successful authentication, the original POST data must be input again.
 
Note 
When a rule is added with the Captive Portal option enabled, users are reminded that they can customize the pre-defined web portal page. Go to the new Captive Portal Page Customization tab of Configure > Security > Access Control. Edit the text and HTML to suit your needs. For example, you may want to include your company logo in place of the Websense logo.
Customizing the web portal page
The web portal page is an HTML form that is presented to the user for interactive authentication.
Default contents are provided on the Captive Portal Page Customization tab of Configure > Security > Access Control. It is recommended that you customize the form to convey to users who see it that this logon portal is part of your network and organization. For example, you might:
*
*
*
*
The form must be a valid HTML document, defined with valid HTML syntax.
The following variables are used in the document to ensure that it is delivered to the users properly. It is recommended that you do not change their placement or usage.
*
*
*
*
When you have entered all of the syntax, click Preview to preview the page you have created. When you are happy with the way the portal page looks, click Apply to save the content to a file. If you want to return to the default, pre-defined portal page syntax, click Restore to Default Page.
The customized Captive Portal page is saved to auth_form.html, which is stored in /opt/WCG/config. In addition, css and image files can be used to define the portal page. CSS files must be stored in /opt/WCG/config/ui_files and image files must be store in /opt/WCG/config/ui_files/images, by default.
 
Note 
Add a variable to records.config to use a different name for the saved Captive Portal page or store the css and image files in a different directory.
 

Go to the table of contents Go to the previous page Go to the next page View or print as PDF
Copyright 2016 Forcepoint LLC. All rights reserved.