Allow only a single connection with a ticket of a captive portal
I am running a captive portal for a hotel, using a Fortigate100D as a hub FortiAP 221B, and works very well, but I have a problem, the tiket generated, allowing the connection of multiple machines at the same time, and need is to allow the connection to one machine, with one tiket generated.
I appreciate your attention, and I hope you can help me
This is only the first half of the option you have to set.
config user group
edit <name of your guestuser group>
set auth-concurrent-value 1
The description is:
Set the number of concurrent logins permitted from the same IP address. Range 1 to 100. 0 means no limit. This field is available if auth-concurrentoverride is enabled.
What makes me wonder is the part talking about " from the same IP address" . Typically, a hotel guest will bring in 2+ devices which connect on the open WLAN, each receiving a unique IP address from the DHCP pool. That would mean that this option will have no effect. I' m afraid you will have to try it out yourself.
the docu " from the same ip" is from my point of view a docu error. Shame on Forti -if it is so- specially because this error is since initial release of CLI 5.0 GA.
I had the same request from a customer for two days and tested by myself. It works.....I asked a Forti contact regarding the error and he told me " yes, from his point of view it is a error" .
not really funny
I' m late to this topic. I don' t know the ticket number offhand detailing your discussion with TAC, but suggest to them to bring it up with the documentation department. Their office is 5 minutes' drive away from mine, and they often come by to gather input on new documents, and changes to existing ones.
If you can' t reach out to them through the ticket, post (or PM me with) a quick summary here, and I can email them directly.
Indicate the document and page number, the problematic text, and how it should have read to be accurate or more clear.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.