In this recipe, we use a local on-premise FortiConnect as a RADIUS server for a FortiCloud-based Captive Portal network. A Fortigate will be used to allow access from FortiCloud to FortiConnect.
We assume that FortiAP is already in your FortiCloud inventory and at least one configured AP network. Refer to FortiCloud-managed FortiAP WiFi for guidance on using FortiCloud to configure a FortiAP.
1. Allowing FortiCloud to access the local FortiConnect |
|
|
On your Fortigate go to Policy & Objects > Addresses and create a new address object for FortiConnect.
|
 |
|
Next, create an address object for FortiCloud IP used by the Captive Portal. In this example, 208.91.113.117/32 is used by apau.forticloud.com |
 |
| Go to Policy & Objects > Virtual IPs and create a new virtual IP, pointing from your WAN to the local FortiConnect. |  |
| Go to Policy & Object > IPv4 Policy and create a new policy to allow RADIUS requests from FortiCloud to FortiConnect. |  |
2. Creating FortiCloud as a RADIUS client on the FortiConnect |
|
|
On your FortiConnect go to Devices > RADIUS Clients and click Add RADIUS Client Name: name the client |
 |
3. Creating FortiConnect as RADIUS Server on the FortiCloud |
|
|
Open your FortiCloud account and go to AP Network > “your AP network” > Configure > My RADIUS Server. Add My RADIUS Server in upper right corner |
 |
4. Creating a new SSID on the FortiCloud |
|
|
Go to SSIDs and click Add SSID. SSID: Type SSID to be used Tip: You will also see a note on the IP to use for FortiCloud access. Configure the Security, Availability and Captive Portal as needed. |
 |
| Once you get the Preview, hit Apply. |  |
5. Results |
|
| Login to the FortiCloud Portal using the Portal. |  |
|
On the FortiConnect go to REPORTS & LOGS > RADIUS Authentications. Find your successful authentication. |
 |
|
On your FortiCloud go to AP Network > “your AP network” > Monitor > Client. Find the client and verify that username is present. |
 |
For further reading, check the FortiCloud v3.1.2 FAQ and the 3.2 Release Notes for FortiCloud.
The post Using FortiConnect as a RADIUS server in FortiCloud appeared first on Fortinet Cookbook.