Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
quackers82
New Contributor

Logout/deauthenticate via URL? Captive Portal

Is there a URL you can load that will deauthenticate the captive portal session?

 

The situation is in a school, we have a few shared sets of iPads. For safeguarding we have to know who has accessed what so we set the iPads up with captive portal authenticating against our Windows AD. That works fine. The issue is they remain logged in until the set timeout interval. So if another pupil uses a shared iPad before it times out all activity is tied to the previous persons username. 

 

With the iPads we can push home screen icons that point to a website, so is there a URL i can load that will tell the fortigate to deauthenticate the device it receives the request from? That way i can create a logout icon on the iPads. 

6 REPLIES 6
xkalib3r
New Contributor III

Hi

 

I have a similar requirement at a customer. Did you perhaps find a solution for this?

 

 

Regards

FCNSA

FCNSP

FCWS

NSE5

NSE7

FCNSA FCNSP FCWS NSE5 NSE7
Jeff_FTNT

You may try it with CLI:

config system global     set auth-keepalive enable

end

With "auth-keepalive " enable, when user login it will keep a open browser to keep the authentication session active.

It have " Logout"  link on this page, if you click, it will clear authentication session.

This URL is unique and different for each authentication.

Like: http://192.168.1.60:1000/logout?0a03090e000f0c0f">logout

 

"0a03090e000f0c0f" is changed for each authentication session

 

authentication with HTTP

http://192.168.1.60:1000/

authentication with HTTPS

https://192.168.1.60:1003/

 

Thanks.

Rosroch

This was useful for me. While, I was testing, I noticed two thing:

 

1. Authentication refresh - 500 secs timers. It counts down and nothing happens after 500 secs. Any idea what this is used for.

2. What if I close browser session of the authentication keep alive page. I did close it and I can't seem to restore the session. SO i dont know how I can logout now. Any thoughts ??

Ahmed_Faris

After alot of search .... i found a solution

to logout of your session .. just request the login link and put logout? after this link and dont forget to put the question mark.

for example:

[link]http://192.168.1.60:1000/logout?[/link]

DarwinPH

You can also enable the Fortinet Bar under Proxy Options then Web Options. A bar will show on the top portion of the webpage which shows the user who is currently logged in. To logout, simply click on the username and a sign out option will show. The bar only shows up on unsecured websites though.

 

Hope this helps.

LeoT
New Contributor

Did you try http://192.168.1.60:1000/logout?

Change the IP and port to yours...

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors