You receive reports that Users cannot browse internet sites. You are using identity awareness with AD Query and Identity Collector in addition you have the Browser Based Authentication Enabled. What command can be used to debug the problem?
You receive reports that Users cannot browse internet sites. You are using identity awareness with AD Query and Identity Collector in addition you have the Browser Based Authentication Enabled. What command can be used to debug the problem?
To debug issues with identity awareness and Browser Based Authentication (such as users not being able to browse internet sites), the appropriate command is 'pdp debug nac extended' on the gateway. This command enables detailed debugging for Policy Decision Point (PDP) and Network Access Control (NAC) on the gateway, which are relevant for addressing identity and access-related issues.
this was a real question on the updated PearsonVUE exam (R81.20), passed on May 9th.
All these commands are not applicable to R81.20: there is no "ad query", there is "adlog query" there is no "ad debug", there is adlog <a/l> debug adlog l [options] - if you are using Identity Logging adlog a [options] - if you are using AD Query (Identity Awareness) I found in CCTE p.397: fw ctl debug -m fw + nac * use IDAPI for Application and URL filtering I'm not sure, but it looks like the extended option/flag only applies to adlog The CCTE about Captive Portal says that this is an Apache web application and the logging level is set via the httpd_conf.conf file.