For hotel or Internet cafe guests, or employees who bring personal devices to work, the Captive Portal feature gives you control over user access to the Internet or other networks. When enabled, this feature presents a ‘terms and conditions’ page to which the user must agree before getting access to browse the web. The Captive Portal feature can be enabled and configured on the BLOCK/ACCEPT > Configuration page.
Example use cases:
With Captive Portal enabled, the first request from every user will be served a splash page displaying customized terms and conditions, which you configure on the BLOCK/ACCEPT > Block Message page. Once the user agrees or, for LDAP users, logs in, the page is not presented again for the duration of the browsing session and the user can view content that is not blocked for that user based on Captive Portal settings and block/accept policies. These settings allow for applying this feature to certain IP groups and unauthenticated ('guest') users. You can apply different policies depending on whether the user identifies with LDAP credentials or as a guest. Exclusions for IP groups are also configurable.
Note that all traffic is logged, and the session will time out automatically in 24 hours.
When the SSL Inspection feature is enabled on the Barracuda Web Security Gateway, the SSL certificate needs to be imported into the users' browsers to avoid certificate errors when they browse HTTPS sites. A common use case is users who bring their own devices for use on the local network. If the SSL certificate is not imported into the device browser, the user will be redirected to the Captive Portal login page and see the following error message: