Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
rmittal
Staff
Staff

Created on ‎12-23-2024 03:46 AM Edited on ‎12-30-2024 06:32 AM By Staff

Article Id 366294

Troubleshooting Tip: Configure the captive portal using FortiGuest with FortiGate for Data restriction

Description This article describes how to Configure a captive portal using FortiGuest with FortiGate for Data restriction.
Scope FortiGate, FortiGuest.
Solution
  1. Create a radius server:

 

1.JPG

Note:

NAS-IP is mandatory.

 

Select 'OK' and Enable Radius Accounting from CLI of FortiGate and edit the below parameters with values:

 

set acct-interim-interval 60

set radius-coa enable

    config accounting-server

        edit xx

 

2.JPG

 

  1. Create SSID with the below fields:

 

3.JPG

  • Captive Portal: Enabled.
  • Portal type: Authentication
  • Authentication portal: External
  • Enter the Captive portal URL from FORTIGUEST.
  • Under user group select FORTIGUEST radius server.
  • Exempt destinations/services =è Enter FortiGuest FQDN/IP and DNS.
  • Redirect after Captive Portal: Enter success URL from FortiGuest

 

  1. Login into FortiGuest GUI using admin credentials:
  • Add FortiGate as a radius client, under Devices -> Radius Clients and Select NEW.


4.JPG

Select Attributes:

5.JPG

 

  • Create a portal and portal Rule under Guest portal -> Portal and select 'Create New'. Guest portal -> Portal Rules.
  • Create a Usage Profile under Network Access policies -> Usage profile and select 'Create New'. Select Data usage and Enter the details.


6.JPG

 

  • Map the Usage profile.

 

 

1356
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.