What happens if the identity of a user is known?
A.
If the user credentials do not match an Access Role, the traffic is automatically dropped.
B.
If the user credentials do not match an Access Role, the system displays a sandbox.
C.
If the user credentials do not match an Access Role, the gateway moves onto the next rule.
D.
If the user credentials do not match an Access Role, the system displays the Captive Portal.
When identity data for an IP is unknown and:
All rule fields match besides the source field with an access role.
The connection is http.
The action is set to redirect to the Captive Portal.
If all the conditions apply, the traffic is redirected to the Captive Portal to get credentials and see if there is a match.
If not all conditions apply, there is no match and the next rule is examined.
Note – You can only redirect http traffic to the Captive Portal.
https://sc1.checkpoint.com/documents/R80.10/WebAdminGuides/EN/CP_R80.10_IdentityAwareness_AdminGuide/html_frameset.htm?topic=documents/R80.10/WebAdminGuides/EN/CP_R80.10_IdentityAwareness_AdminGuide/62050