The only way I can see this working for you is to add the ip address of the AD to the "allowed IP addresses" tab under captive portal, but this will allow even unauthenticated users access to the AD. You will have to play around with the "from" and "to" option to see which one works as I've forgotten which way worked best. Regards

Maybe you should at least note that it is a turkish web site…

is this what you are looking for:  /var/log/portalauth.log ?

no my cp is not using ssl and i have static ip adress

I believe you can http://to_the_portal:8001 to get the login page again. relogin to get the pop up again.

Thanks :).  Sorry that I didn't read the docs, I just haven't downloaded it yet to even play with it.  I just found this project around 1:30AM.  I'm at work right now planning stuff out for it.

In Italy we must keep logs (squid + captive portal auth) for 5 years. In little networks I can't istall a second hw to keep logs (I should make redoundant each hardware, it's too expensive) I think it's better to keep all locally (in raid1+spare system) and burn data regularly ciao Giaco

there is a full ACL system in HEAD, so i guess 1.3 release will have this..

Look at this.  Just follow the instruction there. http://forum.pfsense.org/index.php/topic,2966.0.html

Thank you! I know where is the mistake ? I don't register the IAS server in active directory! Thank you also!

thanks for replying. for now, i used the method described in link above and it is working fine on 1.2RC3. If you have time, it will be nice to have

any info on this? /f

Did you try with full url ? Something like : http://www.google.com Worked for me as I can remember…

If you're refering to the pass-through lists, then yes. I had already added all my machine's MAC addresses to the list before turning on the Captive Portal.

hi all applications are working with my clients, my setup is as follows: squid page general settings: proxy interface: lan allow users on interface: checked transparent proxy: checked enabled logging: checked, "useful for squid report" squid cache management: keep all with default values and modify as per your computer specifications enabled offline mode: checked captive portal: enable captive portal checked interface: lan idel timeout: 10 minutes concurrent user logins: checked authentication: local user manger "make sure you add users all done all applications should be working with your clients good luck

Captive portal bypass is either all or nothing, unfortunately this isn't possible.