1. In the Palo Alto NGFW admin portal, go to Device > User Identification > Captive Portal Settings.
  2. On the Capture Portal Settings tab, click the Gear icon.

    A screen capture of the Captive Portal Settings tab, highlighting the gear icon directly beneath the position of the Captive Portal Settings tab.
    The Captive Portal window is displayed.
  3. In the Captive Portal window, complete the following fields, and then click OK.
    1. Select the Enable Captive Portal check box.
    2. In the Mode section, click Redirect.
    3. In the Redirect Host field, enter the redirect host name.
      Note:

      The redirect host name can be a URL or interface IP address on your firewall.

    4. From the SSL/TLS Service Profile list, select your SSL certificate.
    5. From the Authentication Profile list, select your authentication profile.

    A screen capture of the Captive Portal window with completed fields.