Skip to main content
ArmandoSMx
ArmandoSMx
Visitor III
January 23, 2025
Question

Entraid SSO on demand captive portal.

  • January 23, 2025
  • 1 reply
  • 664 views

I can't find the right configuration.

I can successfully authenticate users using Entra ID and firewall policies.

However, what I want to achieve is to have a rule that allows traffic for unauthenticated users and several rules for authenticated groups (Entra ID).

 
 

image.png

 

I don’t see the option for a captive portal that allows on-demand SSO authentication.

It’s possible that I’m thinking this wrong since we migrated from Sophos XG, where you could log in to its captive portal and authenticate with Entra ID SSO.


Any help will be appreciated

1 reply

funkylicious
SuperUser
funkylicious
SuperUser
January 23, 2025

havent really played with captive portals, but you can activate them in two ways.

interface level, https://docs.fortinet.com/document/fortigate/7.0.15/administration-guide/934626 

policy level, https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-create-FortiGate-captive-portal-using/ta-p/225870 

"jack of all trades, master of none"
Terms & ConditionsAccessibility statement