A compliant captive portal with FortiGate
Add a branded guest login to your FortiGate firewall. SMS verification, RADIUS authentication and legal logging.
Start FreeHow it works
1. Design your portal
Pick your logo, colors and login method (SMS, voucher, hotel) from the dashboard.
2. Connect to RADIUS
Add FortiGate as a NAS client to Captivo RADIUS (System → User & Authentication → RADIUS Servers, PAP).
3. Upload the login page
Download the FortiGate HTML from Settings → Portal → Templates and paste it into FortiGate's Security Profiles/Replacement Messages → Captive Portal → Login Page.
4. Go live
When a guest connects your branded portal opens, verifies them and grants internet — records are kept for compliance.
Why Captivo + FortiGate?
- FortiGate external captive portal + RADIUS (PAP) guest authentication
- Branded login page loads into Replacement Messages → Captive Portal
- Works alongside your existing firewall policies
- SMS, voucher and hotel (room-no) login; compliant logging
Frequently Asked Questions
How does Captivo work with FortiGate?
You design your branded portal in Captivo, download the FortiGate login page HTML from Settings → Portal → Templates and paste it into FortiGate's Replacement Messages → Captive Portal → Login Page. You configure FortiGate to authenticate against the Captivo RADIUS server with PAP. The guest logs in with their phone/voucher and authentication happens through FortiGate.
Is FortiGate support production-ready?
FortiGate integration shares the same RADIUS flow and template infrastructure as pfSense/OPNsense. You can get started by following the setup steps; email support@captivo.io if you have any questions.
Any difference vs pfSense/OPNsense?
The guest experience and features are the same (SMS, voucher, hotel login, compliant logging). The difference is how the login page connects to the firewall: for FortiGate the login HTML is pasted into Replacement Messages → Captive Portal → Login Page and the form posts to FortiGate's own captive portal flow.