Hello,

What options are there to enable captive portal remediation while simultaneously leaving AlwaysOn set to true and the ConnectFailurePolicy set to closed?

In this combination, the embedded browser does not open to confirm the captive portal.

The browser only opens if the ConnectFailurePolicy is set to open or AlwysOn is set to false.

However, due to security requirements, both settings must be configured this way.

What security risks or how vulnerable is the client with a FailConnectFailurePolicy set to open?

I should also mention that certificate-based authentication is used. With user login, this works without issues with these settings.

Thank you in advance.