user-manage captive-bypass enable

By default, the Apple CNA Bypass function is disabled.

The iOS and OS X systems provide the Captive Network Assistant (CNA) function. This function enables an Apple device (such as iPhone, iPad, iPod, or iMAC) to automatically connect to a specified Apple website to check whether the Internet connection is proper after Wi-Fi is enabled. If the check fails (the Apple device does not receive the expected response), the Apple device automatically tears down the Wi-Fi connection.

In the portal authentication scenario, to prevent Apple devices from tearing down Wi-Fi connections before passing the portal authentication, you must run the user-manage captive-bypass enable command to enable the Apple CNA Bypass function. After the function is enabled, the FW automatically responds to the packets sent from the iOS or OS X system for checking network connectivity, preventing Wi-Fi disconnections.

The Apple CNA Bypass function applies only to the portal authentication scenario.