- Forums
- Knowledge Base
- Customer Service
- FortiGate
- FortiClient
- FortiAP
- FortiAnalyzer
- FortiADC
- FortiAuthenticator
- FortiBridge
- FortiCache
- FortiCarrier
- FortiCASB
- FortiConnect
- FortiConverter
- FortiCNP
- FortiDAST
- FortiDDoS
- FortiDB
- FortiDNS
- FortiDeceptor
- FortiDevSec
- FortiDirector
- FortiEDR
- FortiExtender
- FortiGate Cloud
- FortiGuard
- FortiHypervisor
- FortiInsight
- FortiIsolator
- FortiMail
- FortiManager
- FortiMonitor
- FortiNAC
- FortiNAC-F
- FortiNDR (on-premise)
- FortiNDRCloud
- FortiPAM
- FortiPortal
- FortiProxy
- FortiRecon
- FortiRecorder
- FortiSandbox
- FortiSASE
- FortiScan
- FortiSIEM
- FortiSOAR
- FortiSwitch
- FortiTester
- FortiToken
- FortiVoice
- FortiWAN
- FortiWeb
- FortiWebCloud
- Wireless Controller
- RMA Information and Announcements
- FortiCloud Products
- ZTNA
- 4D Documents
- Customer Service
- Community Groups
- Blogs
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
- Fortinet Community
- Forums
- Support Forum
- Re: Guest Social Login with Administrator Approval
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Guest Social Login with Administrator Approval
Hi,
Does anyone know if I can user social login guest registration along with administration approval? I mean, the guest user register itself using social login (FB, Linkedin, etc) then some administrators receives an email to allow the user to navigate ?
I am using a FortiAuthenticator v4.00-build0019-20151007-patch00.
PS: I have "Require administrator approval" on Self-service portal -> self-registration ENABLED but only works in the regular form.
Thanks in advanced.
Ronald
Solved! Go to Solution.
1 Solution
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This sounds like a perfect use case for the self registration portal. This would be the workflow:
[ul]One other common usage scenario is to pre-create a list of time limited user accounts and print the list out for distribution to users (as often happens in hotels). There are some major changes planned in the 5.0 release around this guest management area.
Dr. Carl Windsor Field Chief Technology Officer Fortinet
8 REPLIES 8
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I already replied to this question posed via the techdocs alias but will add it here for others.
The purpose of the Social Authentication is simple guest wireless access e.g. in a public space, coffee shop etc. In this case there is requirement to provide free open access but at the same time a legal necessity to know who is using the network.
The Admin Approval feature is for the self-registration portal which is not connected to the Social Auth feature therefore it is not possible to achieve your goal.
I am curious as to your use case though as we are making major changes in the Guest Managemnt side in future releases and it would be good to see if they would meet your needs. Why would you need the administrator to approve the Social access and why not use the self-reg portal using e.g. email or SMS instead.
Dr. Carl Windsor Field Chief Technology Officer Fortinet
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Hi Carl,
First of all, thank you very much for the answer. I had tried to find this information at Fortinet website but I couldn't. I even read the "FortiAuthenticator - Administration Guide" but there it wasn't clear. I really apreciate if you could provide me the link for your metioned previous post, so it will be ore more place to look next time :)
I got your point and I will try to explain our need. We are a WebStore company and we have some offices where we regularly have partners or suppliers coming and go. The drive of our IT staff is offer GUEST access in a "easy way" without be necessary to fill forms. We thought Social Login it was very nice way.
On the flip side I can't let this access open to anyone for security reasons. We have another buildings/companys very close (neighbors) or even someone in the street or at Cultural Center, across the street could discover the SSID and use it without our concern, even for short time. I also want to avoid any of our own employees from use this network.
One more question, this e-mail or sms, you mean, inside Social Portal/social_login context ? Or are you talking about the regular form Credentials Portal/caplogin ? I am saying both under Captive Portal.
Thank you, again.
Sincerely,
Ronald
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
This sounds like a perfect use case for the self registration portal. This would be the workflow:
[ul]One other common usage scenario is to pre-create a list of time limited user accounts and print the list out for distribution to users (as often happens in hotels). There are some major changes planned in the 5.0 release around this guest management area.
Dr. Carl Windsor Field Chief Technology Officer Fortinet
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Great,
I will implement it on this way.
I look forward for next releases :)
Thank you Carl
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Can someone provide more details around this implementation? I am looking to do the same where guest accounts are approved by admins before logging on.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Take a look at this guide here. It is a little old now but should still be relevent enough to get you started.
Dr. Carl Windsor Field Chief Technology Officer Fortinet
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Thanks Carl.
There does seem to be a big difference in the versions. I am not sure how to proceed.
Do i redirect the guest SSID to the FAC or to somewhere else?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
How do i setup the SSID to authenticate against the self registered accounts?
Related Posts
- FortiAuthenticator user disable before approve process 604 Views
- Youtube on Firewall Policy 1358 Views
- Specific account permissions for service account... 2747 Views
- WiFi Guest pending administrator approval 1991 Views
- Guest Social Login with Administrator Approval 6736 Views
Labels
-
FortiGate
6,872 -
FortiClient
1,364 -
5.2
801 -
5.4
639 -
FortiManager
589 -
FortiAnalyzer
433 -
6.0
416 -
5.6
362 -
FortiAP
358 -
FortiSwitch
353 -
FortiClient EMS
277 -
FortiMail
269 -
6.2
251 -
FortiAuthenticator v5.5
234 -
5.0
196 -
FortiWeb
166 -
6.4
128 -
FortiNAC
117 -
FortiGuard
109 -
IPsec
94 -
FortiGateCloud
91 -
FortiSIEM
91 -
FortiCloud Products
85 -
SSL-VPN
80 -
FortiToken
75 -
Customer Service
70 -
4.0MR3
64 -
Wireless Controller
63 -
FortiProxy
47 -
FortiADC
45 -
FortiEDR
42 -
Fortivoice
41 -
SD-WAN
37 -
FortiDNS
36 -
FortiExtender
35 -
FortiGate v5.4
35 -
FortiSandbox
33 -
FortiSwitch v6.4
30 -
Firewall policy
30 -
High Availability
27 -
FortiAuthenticator
26 -
VLAN
26 -
FortiConnect
24 -
FortiWAN
22 -
FortiConverter
21 -
ZTNA
20 -
FortiPortal
18 -
SAML
17 -
FortiGate v5.2
17 -
DNS
17 -
Certificate
17 -
FortiSwitch v6.2
16 -
LDAP
16 -
BGP
15 -
VDOM
15 -
FortiMonitor
14 -
Interface
14 -
Logging
14 -
FortiGate v5.0
13 -
FortiDDoS
13 -
Authentication
12 -
fortilink
12 -
Routing
12 -
FortiCASB
12 -
RADIUS
10 -
SSL SSH inspection
10 -
Traffic shaping
10 -
Virtual IP
10 -
SSO
10 -
FortiRecorder
10 -
FortiWeb v5.0
9 -
FortiManager v5.0
9 -
NAT
9 -
4.0MR2
9 -
SSID
8 -
Fortigate Cloud
8 -
Application control
8 -
FortiGate v4.0 MR3
8 -
RMA Information and Announcements
7 -
FortiSOAR
7 -
FortiAnalyzer v5.0
7 -
SNMP
7 -
Admin
7 -
4.0
7 -
IP address management - IPAM
7 -
Security profile
6 -
Traffic shaping policy
6 -
FortiBridge
6 -
Web application firewall profile
6 -
Web profile
6 -
Proxy policy
5 -
FortiAP profile
5 -
WAN optimization
5 -
FortiManager v4.0
5 -
Static route
5 -
FortiDirector
4 -
IPS signature
4 -
Packet capture
4 -
Antivirus profile
4 -
Automation
4 -
DNS Filter
4 -
FortiTester
4 -
FortiCarrier
4 -
FortiCache
4 -
OSPF
4 -
3.6
4 -
FortiScan
4 -
trunk
4 -
Port policy
4 -
FortiDeceptor
3 -
FortiToken Cloud
3 -
Traffic shaping profile
3 -
DoS policy
3 -
Email filter profile
3 -
Web rating
3 -
Intrusion prevention
3 -
FortiDB
3 -
System settings
2 -
FortiInsight
2 -
NAC policy
2 -
Fortinet Engage Partner Program
2 -
Users
2 -
FortiPAM
2 -
VoIP profile
2 -
FortiAI
2 -
FortiHypervisor
2 -
Fabric connector
2 -
Netflow
2 -
Protocol option
2 -
4.0MR1
1 -
TACACS
1 -
Replacement messages
1 -
Subscription Renewal Policy
1 -
Schedule
1 -
FortiCWP
1 -
FortiNDR
1 -
SDN connector
1 -
Application signature
1 -
Authentication rule and scheme
1 -
FortiManager-VM
1 -
Internet Service Database
1 -
Multicast routing
1 -
Explicit proxy
1 -
Zone
1
Broad. Integrated. Automated.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Security Research
Company
News & Articles
Copyright 2024 Fortinet, Inc. All Rights Reserved.