Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 26 subscribers
  • Views 19481 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Force login Page

Travis McCalgan

Hi All,

I was a Kerio Control user, ive decided to give Sophos XG a go, so far features very limited. I have a question, i am wanting any user the connects to the internet through the XG, it must require login page to proceed further. How can this be done without having to manually add a proxy into desired browser. Kerio is automated.

 

One pain in the ass i have is when i create a rule to block say youtube or any https i have to install the certificate into the browser, other wise the user doesnt get the Blocked page, but the unsecured blah blah hack. Tried turning off https scanning in default policy, aswell as my rule, aswell as in console. No joy.

 

Any help will be appreciated



This thread was automatically locked due to age.
Parents
  • 0

    Travis,

    on the firewall rule LAN TO WAN make sure to check "match know users" and "show captive portal to unknow users". Also inside the Authentication > Services > Captive Portal settings select "redirect for unauthenticated users" to yes.

    Regards

  • 0 in reply to lferrara

    Thanks for the speedy response,

     

    What is the difference between a known user and unknown user? i tried account singing by Mac, but doesnt work as i want to track traffic by user.

     

    Also would this be on my Default traffic policy in the Firewall Section

  • 0 in reply to Travis McCalgan

    Travis,

    you need to create a user before you can even authenticate on the captive portal.

    Know users allows you to select on which users the rule is appled. If you select any, all authenticated users are considered.

    Unknow users are devices not autheticated through a user.

Reply
  • 0 in reply to Travis McCalgan

    Travis,

    you need to create a user before you can even authenticate on the captive portal.

    Know users allows you to select on which users the rule is appled. If you select any, all authenticated users are considered.

    Unknow users are devices not autheticated through a user.

Children