Description
This article describes how to configure Guest captive portal on FortiAuthenticator with external CA certificate.
Solution
1) configure guest user group with the Fortinet group attribute in Authentication -> User Groups and then edit the user group.
This article describes how to configure Guest captive portal on FortiAuthenticator with external CA certificate.
Solution
1) configure guest user group with the Fortinet group attribute in Authentication -> User Groups and then edit the user group.
2) Configure the RADIUS client with the shared secret in Authentication -> RADIUS Service -> Clients and then edit the RADIUS client.
Select the group filter with the guest user group.
3) Guest portal configuration is available under Authentication -> Guest Portals -> Portals.
Configure the Guest Portal name and select the RADIUS client in profile configuration.
Configure the Guest Portal name and select the RADIUS client in profile configuration.
The URL of the Guest Portal, in the format of:
https://<FortiAuthenticator IP/FQDN>/guests
4) Go to Certificate Management -> Certificate Authorities -> Trusted CA and import the CA certificate generated from the third party CA Authorities.
5) Import the SSL certificate in Certificate Management -> End Entities -> Local Services.
6) Select the Trusted CA certificate in Administration -> System access then select the imported server certificate in 'Https certificate'.
