question

logographer avatar image
0 Likes"
logographer asked

When using 3rd party authentication servers, how do I configure FortiOS to use its Captive Portal?

How do we use replacement message and change configuration to customize for these different servers?

FortiOSAuthentication
10 |600
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

1 Answer

·
Tomcat Silver avatar image
0 Likes"
Tomcat Silver answered

One option might be to Edit Interface and set "Security mode" to Captive portal and then set there user groups pointing to your external authentication servers. But all the traffic passing this port will be forced to authenticated unless it match explicitly set exemptions.

Another way is to simply set firewall policies to be "identity-based" so they do have users or in your case probably user groups (referencing to 3rd party auth. servers) set inside as part of matching criteria aside to stuff like source/destination address/port and service.

More on https://docs.fortinet.com/document/fortigate/7.0.5/administration-guide/622284/user-authentication


10 |600
Toggle Comment visibility. Current Visibility: Viewable by all users

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Welcome to FortiAnswers

FortiAnswers is the space dedicated to FortiSASE and FortiOS questions and suggestions.

  • Please review the Community guidelines
  • If you are a moderator, please refer to the Moderation guidelines
  • If something in the above guidelines is unclear, please post your question to the Community Feedback space or the Moderators' space