The Captive Portal tool:
A.
Acquires identities from unidentified users.
B.
Is only used for guest user authentication.
C.
Allows access to users already identified.
D.
Is deployed from the Identity Awareness page in the Global Properties settings.
Browser-Based Authentication
Acquires identities from unidentified users. You can configure these acquisition methods:
Captive Portal – a simple method that authenticates users through a web interface before granting them access to Intranet resources. When users try to access a protected resource, they get a web page that must be filled out to continue.
Transparent Kerberos Authentication – browser attempts to authenticate users transparently by getting identity information before the Captive Portal username/password page opens. When you configure this option, the Captive Portal requests authentication data from the browser. Upon successful authentication, the user is redirected to its original destination. If authentication fails, the user must enter credentials in the Captive Portal.