Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
eshaq786
New Contributor

Created on ‎04-13-2016 08:43 AM

Multiple Firewalls - Central Captive Portal

Does anyone know of a way to centrally manage guest access for multiple firewalls at multiple sites? It appears that guest management setup on a firewall is only for that particular site.

 

If central management is not possible, can someone recommend a free captive portal software that we can run as a virtual machine or even install on a windows server where we can manage guest access i.e. provide credentials.

5640
0 Kudos
6 REPLIES 6
Baptiste
Contributor II

Created on ‎04-14-2016 10:43 PM

You have to use Fortiauthenticator for central user management

2 FGT 100D  + FTK200

3 FGT 60E  FAZ VM  some FAP 210B/221C/223C/321C/421E

2 FGT 100D + FTK200 3 FGT 60E FAZ VM some FAP 210B/221C/223C/321C/421E
2522
0 Kudos
xsilver_FTNT
Staff
Staff
In response to Baptiste

Created on ‎04-18-2016 12:23 AM

FortiAuthenticator is certainly good solution I would preffer.

Alternatively you can write your own portal and on FortiGate use External Captive Portal option.

[just to complete answer]

Tomas Stribrny - NASDAQ:FTNT - Fortinet Inc. - TAC Staff Engineer
AAA, MFA, VoIP and other Fortinet stuff

2522
0 Kudos
eshaq786
New Contributor
In response to xsilver_FTNT

Created on ‎04-20-2016 05:06 AM

We do have a Fortiauthenticator but how does guest management work on that?

2537
0 Kudos
Baptiste
Contributor II
In response to eshaq786

Created on ‎04-26-2016 10:56 PM

I quickly test FAC (eval licence), as far as I remember there is no "Guest" items

"Guest Users" on FGT equals "local users" on FAC

and "remote users" = fetch from your AD/LDAP/...

 

But I'm not 100% sure, if someone can confirm (or not !)

2 FGT 100D  + FTK200

3 FGT 60E  FAZ VM  some FAP 210B/221C/223C/321C/421E

2 FGT 100D + FTK200 3 FGT 60E FAZ VM some FAP 210B/221C/223C/321C/421E
2537
0 Kudos
Fishbone_FTNT
Staff
Staff
In response to Baptiste

Created on ‎04-26-2016 11:29 PM

Hey guys,

on FAC there are no explicit "Guest users", but you can create local groups which would serve that purpose, and/or utilize self-registration portal, which will give the visitors possibility to self-register themselves into the network.

You can even try social login feature (since 4.0 I think) which will allow to identify visitors with Facebook or Google accounts (supported is also LinkedIn and one more which I can't recall right now).

 

But of course your config depends on your needs :) Definitely there is handful of possibilities to handle guest users with FAC.

 

Cheers,

 Fishbone )(

smithproxy hacker - www.smithproxy.org

2537
0 Kudos
eshaq786
New Contributor

Created on ‎05-23-2016 01:33 AM

Anyone know of a alternative hotspot captive portal solution?

2522
0 Kudos
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.