FortiWLC
Follow this procedure on the FortiWLC GUI to configure captive portal.
- Navigate to Configuration > Security > RADIUS to configure a RADIUS profile. Click Add.
Create one RADIUS profile for authentication and one for accounting. Update the configuration parameters as required.
Note: The FortiWLC SSID must be configured in the tunnel mode; SSIDs in the bridge mode are NOT supported for Captive Portals. - Enter the RADIUS IP - (Application server IP address), the RADIUS Secret should be the same as the RADIUS Secret Key configured on the FortiPresence VM GUI (Portal > Portal Settings > Radius Clients). Click Save.
- Navigate to Configuration > Security > Captive Portal and create a Captive Portal Exemptions profile. Click Add and update the configuration parameters as required. Enter the FQDN based exclusions in the FQDN list. Add the FQDN for FortiPresence Connect server to the exemption list.
- Create a Captive Portal profile. Click Add and in User Authentication enter the RADIUS profiles created for authentication and accounting.
- Configure the External Portal Settings, Select Fortinet-Presence as the External Server.
- Select the Captive Portal Exemption Profile created in Step 7 enter the Captive Portal URL, (Captive Portal URL copied from the FortiPresence VM GUI – Portal Management > Radius Configuration). Click Save.
- Navigate to Configuration > Security > Profile. Click Add and update the configuration parameters as required.
- Configure the Captive Portal Settings. Select WebAuth as the Captive Portal and select the created Captive Portal profile in Step 8 and the Captive Portal Authentication Method as External.
- Enter the Captive Portal profile name as the Passthrough Firewall Filter ID. Click Save.
- Navigate to Configuration > Wireless > ESS to create an ESS profile. Click Add and update the configuration parameters as required.
- Select the Security Profile created in Step 10. Click Save.