Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
eksjonathan
New Contributor

Explicit proxy login page not served over HTTPS (FortiOS 5.2, 5.4 and 5.6)

Hello,

 

Summary

This post is a request for the support of the community.  If you think moving the explicit proxy sign in page to HTTPS (currently it's only on HTTP) would be beneficial please contact your account manager and add your support to NFR 0467541.  More details are below and your comments on this post would be appreciated too.

 

Detail

We have a mixed environment of Windows devices and Chromebooks.  The Windows device users are automatically authenticated to the firewall via single sign on (FSSO agents on the domain controllers) but this is not an option for the Chromebooks.  Instead we can specify an explicit proxy which requires the user to login.

 

The problem with this is that the explicit proxy login page is only served over HTTP so all users' credentials are sent unencrypted.  I've raised an NFR to get the login page moved to HTTPS but apparently no-one else has requested this feature.  With an increasing number of Chromebooks and the need to be able to log / filter web browsing this is becoming a bigger problem.

 

Thanks, in advance, for your support.

 

Jonathan

1 REPLY 1
eksjonathan
New Contributor

Just to make folk aware, this NFR has not been progressed still.  Apparently there's no desire for it.

 

I can't believe we're the only people with the problem, so if this also affects you please get in touch.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors