Fortinet Document Library

Version:


Table of Contents

CLI Reference

6.0.6
Download PDF
Copy Link

authentication setting

Configure authentication schemes and the host/address name and port number for captive portal.

History

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.

Command Description

set captive-portal-type {fqdn | ip}

set captive-portal6 <host-name>

set captive-portal-ip6 <ipv6-addr>

New option to determine the captive portal type. When captive-portal-type is set to fqdn, use captive-portal6 to set the host name. When captive-portal-type is set to ip, use captive-portal-ip6 to set the IP.

Kerberos authentication requires the captive portal to be an FQDN address that is resolved to a local IP address. However, it becomes more complicated to setup an FQDN address in a local user deployment. Therefore you can now set the captive portal type to either use an FQDN or IP address.

config authentication setting
    set active-auth-scheme {string}   Active authentication method (scheme name). size[35] - datasource(s): authentication.scheme.name
    set sso-auth-scheme {string}   Single-Sign-On authentication method (scheme name). size[35] - datasource(s): authentication.scheme.name
    set captive-portal-type {fqdn | ip}   Captive portal type.
            fqdn  Use FQDN for captive portal.
            ip    Use an IP address for captive portal.
    set captive-portal-ip {ipv4 address any}   Captive portal IP address.
    set captive-portal-ip6 {ipv6 address}   Captive portal IPv6 address.
    set captive-portal {string}   Captive portal host name. size[255] - datasource(s): firewall.address.name
    set captive-portal6 {string}   IPv6 captive portal host name. size[255] - datasource(s): firewall.address6.name
    set captive-portal-port {integer}   Captive portal port number (1 - 65535, default = 0). range[0-65535]
end

Additional information

The following section is for those options that require additional explanation.

active-auth-scheme <name>

Set the active authentication method using the scheme name created in config authentication scheme.

captive-portal <name>

Set the captive portal host name.

captive-portal-port <port>

Set the captive portal port number. Set the value between 0-65535. The default is set to 0.

sso-auth-scheme <name>

Set the SSO authentication method using the scheme name created in config authentication scheme.

authentication setting

Configure authentication schemes and the host/address name and port number for captive portal.

History

The following table shows all newly added, changed, or removed entries as of FortiOS 6.0.

Command Description

set captive-portal-type {fqdn | ip}

set captive-portal6 <host-name>

set captive-portal-ip6 <ipv6-addr>

New option to determine the captive portal type. When captive-portal-type is set to fqdn, use captive-portal6 to set the host name. When captive-portal-type is set to ip, use captive-portal-ip6 to set the IP.

Kerberos authentication requires the captive portal to be an FQDN address that is resolved to a local IP address. However, it becomes more complicated to setup an FQDN address in a local user deployment. Therefore you can now set the captive portal type to either use an FQDN or IP address.

config authentication setting
    set active-auth-scheme {string}   Active authentication method (scheme name). size[35] - datasource(s): authentication.scheme.name
    set sso-auth-scheme {string}   Single-Sign-On authentication method (scheme name). size[35] - datasource(s): authentication.scheme.name
    set captive-portal-type {fqdn | ip}   Captive portal type.
            fqdn  Use FQDN for captive portal.
            ip    Use an IP address for captive portal.
    set captive-portal-ip {ipv4 address any}   Captive portal IP address.
    set captive-portal-ip6 {ipv6 address}   Captive portal IPv6 address.
    set captive-portal {string}   Captive portal host name. size[255] - datasource(s): firewall.address.name
    set captive-portal6 {string}   IPv6 captive portal host name. size[255] - datasource(s): firewall.address6.name
    set captive-portal-port {integer}   Captive portal port number (1 - 65535, default = 0). range[0-65535]
end

Additional information

The following section is for those options that require additional explanation.

active-auth-scheme <name>

Set the active authentication method using the scheme name created in config authentication scheme.

captive-portal <name>

Set the captive portal host name.

captive-portal-port <port>

Set the captive portal port number. Set the value between 0-65535. The default is set to 0.

sso-auth-scheme <name>

Set the SSO authentication method using the scheme name created in config authentication scheme.