Hey all,
We use fortigates across all of sites and I'm in the process of setting up a captive portal to use with the wifi network, I noticed that fortigate has the option to enable captive portal and use an external one,
I enabled it and pointed it at the captive software, the issue I'm finding is it goes to a Fortigate Captive portal first and not to the 3rd party one,
Has anyone used an external one and if so are there any guides on how to set it up to work with a 3rd party system?
If I can use forti to do this, then I can add the captive portal to the wired connections as well as the wifi.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi @ivrak,
It seems to be an expected behavior. Does it redirect to the 3rd party after?
When external captive portal providers are used, the authentication happens roughly as follows:
1) FortiGate triggers captive portal authentication (it redirects a user’s HTTP request to itself).
2) It then redirects to the external captive portal provider.
3) The user registers and/or authenticates.
4) The external captive portal provider reports the successful authentication back to FortiGate.
5) FortiGate triggers RADIUS authentication to the configured RADIUS server (typically the same server that provided captive portal); this is to get group information.
6) RADIUS authentication should be successful and return group information as applicable.
7) FortiGate accepts or denies the authentication based on successful user authentication and group membership.
8) If authentication is accepted, FortiGate directs the user to a specified URL or the original request.
Please refer to this article for more details: https://community.fortinet.com/t5/FortiGate/Technical-Tip-FortiGate-external-captive-portal-authenti...
Regards,
Hello @ivrak ,
just for a reference, please check this technical document, where we configure FortiGate captive portal authentication via Fortiauthenticator. This might give you some idea about your third party captive software.
regards,
Sheikh
Hey Ivrak,
there seems to be a largely identical forum thread:
I hope it helps :)
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1696 | |
1091 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.