Hot!Explicit proxy login page not served over HTTPS (FortiOS 5.2, 5.4 and 5.6)

Author
eksjonathan
New Member
  • Total Posts : 10
  • Scores: 0
  • Reward points: 0
  • Status: offline
2018/04/11 06:50:02 (permalink) 5.6
0

Explicit proxy login page not served over HTTPS (FortiOS 5.2, 5.4 and 5.6)

Hello,
 
Summary
This post is a request for the support of the community.  If you think moving the explicit proxy sign in page to HTTPS (currently it's only on HTTP) would be beneficial please contact your account manager and add your support to NFR 0467541.  More details are below and your comments on this post would be appreciated too.
 
Detail
We have a mixed environment of Windows devices and Chromebooks.  The Windows device users are automatically authenticated to the firewall via single sign on (FSSO agents on the domain controllers) but this is not an option for the Chromebooks.  Instead we can specify an explicit proxy which requires the user to login.
 
The problem with this is that the explicit proxy login page is only served over HTTP so all users' credentials are sent unencrypted.  I've raised an NFR to get the login page moved to HTTPS but apparently no-one else has requested this feature.  With an increasing number of Chromebooks and the need to be able to log / filter web browsing this is becoming a bigger problem.
 
Thanks, in advance, for your support.
 
Jonathan
#1

1 Reply Related Threads

    eksjonathan
    New Member
    • Total Posts : 10
    • Scores: 0
    • Reward points: 0
    • Status: offline
    Re: Explicit proxy login page not served over HTTPS (FortiOS 5.2, 5.4 and 5.6) 2018/08/29 06:35:53 (permalink)
    0
    Just to make folk aware, this NFR has not been progressed still.  Apparently there's no desire for it.
     
    I can't believe we're the only people with the problem, so if this also affects you please get in touch.
    #2
    Jump to:
    © 2018 APG vNext Commercial Version 5.5