Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
renji
New Contributor

Created on ‎03-30-2023 01:08 PM

Is the captive portal safe? (it's HTTP by default)

I want to use FortiGate captive portal for my wifi users (Windows RADIUS authentication). I tested it out and it works perfectly. My only concern is that the captive portal itself is HTTP. Isn't that bad? Someone can potentially steal a user's AD account UN and PW. I can't make it HTTPS because it's a private IP. And I cannot enforce the BYOD users to install a self-signed certificate.

How many of you use the captive portal? What do about it being HTTP? or am I missing something here?

10.0.0.0.1 192.168.1.254
10.0.0.0.1 192.168.1.254
Labels:
840
0 Kudos
2 REPLIES 2
adambomb1219
SuperUser
SuperUser

Created on ‎03-30-2023 01:10 PM

Get a public certificate and install that on the FortiGate.

838
0 Kudos
gfleming
Staff
Staff

Created on ‎03-31-2023 11:17 AM

You can absolutely make it HTTPS even though it's a private IP. You just need to buy a certificate from a public authority like VeriSign, LetsEncrypt, etc. 

 

Cheers,
Graham
817
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.