Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
renji
New Contributor

Is the captive portal safe? (it's HTTP by default)

I want to use FortiGate captive portal for my wifi users (Windows RADIUS authentication). I tested it out and it works perfectly. My only concern is that the captive portal itself is HTTP. Isn't that bad? Someone can potentially steal a user's AD account UN and PW. I can't make it HTTPS because it's a private IP. And I cannot enforce the BYOD users to install a self-signed certificate.

How many of you use the captive portal? What do about it being HTTP? or am I missing something here?

10.0.0.0.1 192.168.1.254
2 REPLIES 2
adambomb1219
Contributor III

Get a public certificate and install that on the FortiGate.

gfleming
Staff
Staff

You can absolutely make it HTTPS even though it's a private IP. You just need to buy a certificate from a public authority like VeriSign, LetsEncrypt, etc. 

 

Cheers,
Graham
Labels
Top Kudoed Authors