Captive portal not working as I expect it to work.

Question

I am a new user to this product, but I have worked with a couple of firewalls in the past. I am just trying to setup a simple XG to test out some basic rules. 
 Rule 1: 
 From LAN to WAN 
 everything else Any 
 Match Known users checked 
 Show captive portal to unknown users NOT checked 
 Open Group added. 
 No malware scanning 
 Advanced all defaults or NONE 
 Log Firewall Traffic. 
 
 Rule 2: 
 Drop ALL from any to any 
 Log Firewall Traffic. 
 
 There is no AD or RADIUS or anything. There is only a laptop connected to the LAN port and WAN is out to the internet. 
 When the laptop opens a browser it gets the captive portal. Why? The logic seems to be that I would have to check the show to unknown for it to appear. 
 
 Rule 1
 
 Do I know this user?
 
 no

Do I show the captive portal?
 
 no

The rule does not apply. Goto next rule.

Rule 2
 
 Drop all

I know that this is not terribly useful right now, but this is just a building block for the next rule that I need to add, but if this doesn't work as I expect it to I'm not sure where I would go next.

Muhammad Osama · Accepted Answer

Most probably your global authentication settings are set to Prompt Unauthenticated users to login. To disable that option go to Configure -> Authentication -> Services. 
 At the very bottom of that page you will see "Web Policy Actions for Unauthenticated Users (Captive Portal)". The first option would ask whether you want to Prompt unauthenticated users to login or not. Select No and hit Apply and most probably you will be able to get what you want.