Could you not just a set a rule to give access to the external web server.
Then configure the 'Captive Portal' for your default User Profile for your SSID. Your 'Captive Portal' would point to the URL of your external web server
I think this should work anyway I could be missing something more obvious!