Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Baptiste
Contributor II

Created on ‎01-15-2016 06:00 AM

FQDN redirect to IP adress on logon page

Hello,

When external users have to logon, I give them https://firewall.mydomain.com:1003 (I've load a 3rd party certificate).

but they are redirect to https://IP-ADRESS:1003 with a certificate error

 

Is there a way to fix the name used by FG to match my FQDN ?

 

Thanks !

2 FGT 100D  + FTK200

3 FGT 60E  FAZ VM  some FAP 210B/221C/223C/321C/421E

2 FGT 100D + FTK200 3 FGT 60E FAZ VM some FAP 210B/221C/223C/321C/421E
FG.JPG
Preview file
51 KB
19964
0 Kudos
1 Solution
localhost
Contributor III
In response to Baptiste

Created on ‎01-24-2016 07:22 AM

I think you are missing following settings:

 

config firewall auth-portal
 set portal-addr "portal.example.org"
end

 

config firewall policy

 edit <policyID>

  set auth-redirect-addr portal.example.org

 end

View solution in original post

10034
7 REPLIES 7
Baptiste
Contributor II

Created on ‎01-19-2016 11:14 PM

Hi all,

Can you just tell me if you have issue : are you redirect to IP adress when accessing to https://firewall.mydomain.com:1003 (logon page)

2 FGT 100D  + FTK200

3 FGT 60E  FAZ VM  some FAP 210B/221C/223C/321C/421E

2 FGT 100D + FTK200 3 FGT 60E FAZ VM some FAP 210B/221C/223C/321C/421E
9976
0 Kudos
Baptiste
Contributor II
In response to Baptiste

Created on ‎01-22-2016 07:08 AM

Hi all

I open a Ticket, so stay tuned 

2 FGT 100D  + FTK200

3 FGT 60E  FAZ VM  some FAP 210B/221C/223C/321C/421E

2 FGT 100D + FTK200 3 FGT 60E FAZ VM some FAP 210B/221C/223C/321C/421E
9991
0 Kudos
localhost
Contributor III
In response to Baptiste

Created on ‎01-24-2016 07:22 AM

I think you are missing following settings:

 

config firewall auth-portal
 set portal-addr "portal.example.org"
end

 

config firewall policy

 edit <policyID>

  set auth-redirect-addr portal.example.org

 end

10035
Baptiste
Contributor II
In response to localhost

Created on ‎01-25-2016 05:51 AM

 

 

Thanks for this tip but I'm using Fortigate Captive Portal, not an external one

Extract from CLI doc :

auth-portal

Use this command to add an external authentication portal.

 

Is there a same parameter for FG captive portal ?

2 FGT 100D  + FTK200

3 FGT 60E  FAZ VM  some FAP 210B/221C/223C/321C/421E

2 FGT 100D + FTK200 3 FGT 60E FAZ VM some FAP 210B/221C/223C/321C/421E
9991
0 Kudos
localhost
Contributor III
In response to Baptiste

Created on ‎01-25-2016 06:19 AM

Have you tried it?

In my case this seems to work also when using the internal portal. Just replace portal.example.org with your internal DNS record for the FG Portal.

9992
0 Kudos
Baptiste
Contributor II
In response to localhost

Created on ‎01-26-2016 01:13 AM

Thanks a lot, this is working well

 

Just need the first step :

config firewall auth-portal set portal-addr "portal.example.org" end

 

Additionnal step :  in my case, FG act as DNS server

SSID configuration : DNS Server : Same a Interface IP

Create a DNS Database on "DNS server" tab : Master Zone, type Shadow, not Autoritative

Create a single entry with myportal.mydomain.com pointing to FG Wifi Interface IP.

DNS Service on Interface : Select Wifi interface, recursive mode 

 

2 FGT 100D  + FTK200

3 FGT 60E  FAZ VM  some FAP 210B/221C/223C/321C/421E

2 FGT 100D + FTK200 3 FGT 60E FAZ VM some FAP 210B/221C/223C/321C/421E
9992
0 Kudos
aramide
New Contributor II

Created on ‎02-13-2024 10:37 AM

Above steps doesn't work for Fortiweb 7.4.0. Please provide guidance

3378
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.