In which two places must the captive portal be enabled?

The captive portal functionality requires specific configurations to ensure that users are authenticated before they can access resources on the network. Enabling the captive portal in device access allows the firewall to present the user with a login page when they attempt to connect to the network, ensuring that only authorized users gain access.

Additionally, enabling the captive portal in the firewall rule is essential as it determines which firewall rules will prompt users to authenticate via the captive portal. When a user tries to access the network through a firewall rule with captive portal enforcement, they will be redirected to the login page, allowing the firewall to verify their credentials.

These two settings work together to provide a seamless and secure authentication process for users trying to connect to the network. By setting the captive portal in both device access and firewall rules, the administrator ensures that the appropriate users are prompted for authentication in the correct contexts within the network.