I got a test enviromnent and want to achieve, that all requests for the gaia portal are getting redirected to captive portal.
Only authenticated users should be able to access gaia.
I changed the gaia portal port to 4434 to avoid collisions with the remote access portal.
These steps were already made:
- enable captive portal in identity awareness
- test the portal (works fine)
- create a security policy which allows only access from one LDAP group as an access object to the gaia ip with destination port tcp-4434. Action is allow with "redirect to captive portal" enabled.
If I access the gaia-interface from with a machine without having any user identified, this policy doesn't seem to work.
As if the policy wouldn't match.
Does anybody got an idea what I'm missing?