I don't know those FortiAPs, but what you describe looks a lot at that the client tries to post the credentials to the AP, but there is no valid HTTPS certificate (not trusted, wrong name/fqdn, addressed on IP instead of fqdn, expired or so) on the AP. Some clients may ignore that, other clients reject to post credentials or connect in that case.
Maybe others have seen the same and know how to address this?
------------------------------
Herman Robers
------------------------
If you have urgent issues, always contact your HPE Aruba Networking partner, distributor, or Aruba TAC Support. Check
https://www.arubanetworks.com/support-services/contact-support/ for how to contact HPE Aruba Networking TAC. Any opinions expressed here are solely my own and not necessarily that of Hewlett Packard Enterprise or HPE Aruba Networking.
In case your problem is solved, please invest the time to post a follow-up with the information on how you solved it. Others can benefit from that.
------------------------------
Original Message:
Sent: Feb 14, 2025 01:45 AM
From: Aghiles
Subject: Fortigate Guest SSID with external Captive portal on ClearPass integration Issue
Hi guys,
I am configuring a Guest SSID in Bridge mode on fortigate with external captive portal authentication on aruba clearpass.
The redirection to the captive portal works correctly and the user credentials are sent with HTTP Post méthode to the FortiAP.
The issue that for some devices and some browsers, the authentication works and credentials are recieved and processed correctly by ClearPass, However, on for other devices devices, authentication does not work and credentials are sent to FortiAP but they are not recieved by Aruba Clearpass, and the user is redirected again to the captive portal.
Please, does anyone encountered this problem?
Best regards