Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
yassine
New Contributor II

Captive Portal

Hello

in my case , i would like to let users(guests) self registration in our fortiauthenticator , so i would like to except https://x.x.x.x/registration (x.x.x.x fortiauthentificator address ) from captive portal , like that users can access to registration page.

i have create a policy , but i back to captive portal all times .

thanks for helping me . 

6 REPLIES 6
xsilver_FTNT
Staff
Staff

on 5.2 FortiOS set FortiAuthenticator IP as firewall address object and then go to interface setting and right below the captive portal is possibility to set "Exempt List" .. add FortiAuthenticator's IP address object into it. It will exclude that address from the portal.

Tomas Stribrny - NASDAQ:FTNT - Fortinet Inc. - TAC Staff Engineer
AAA, MFA, VoIP and other Fortinet stuff

yassine

thanks xsilver ,

i have already try this , but i back all time to the portal authentification page , i can only access to any page with fortigate address  ( Fortigate-IP/... ).i have a fortiwifi 60D.

 

yassine

This option ( Exempt List ) is for users or ip addresses that will have full access without authentification.

yassine
New Contributor II

i have found the solution in older version ( v5.0,build0310 ) . the SSID must be Open , and you create a user identity policy and other policy to allow access with http/https to the self registration page .

Vbharath_FTNT

Hi Yassine,

 

This will be the perfect solution for you without using the open authentication.

 

http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=FD36141

 

in your setup, create firewall policy from your WIFI network > FortiAuthenticator and enable setting "set captive-portal-exempt enable" in policy.

Let me know if this helps.

.

Viswa

 

 

eshaq786

How do i do this for 5.2?

Labels
Top Kudoed Authors