Explicit proxy login page not served over HTTPS (FortiOS 5.2, 5.4 and 5.6)
This post is a request for the support of the community. If you think moving the explicit proxy sign in page to HTTPS (currently it's only on HTTP) would be beneficial please contact your account manager and add your support to NFR 0467541. More details are below and your comments on this post would be appreciated too.
We have a mixed environment of Windows devices and Chromebooks. The Windows device users are automatically authenticated to the firewall via single sign on (FSSO agents on the domain controllers) but this is not an option for the Chromebooks. Instead we can specify an explicit proxy which requires the user to login.
The problem with this is that the explicit proxy login page is only served over HTTP so all users' credentials are sent unencrypted. I've raised an NFR to get the login page moved to HTTPS but apparently no-one else has requested this feature. With an increasing number of Chromebooks and the need to be able to log / filter web browsing this is becoming a bigger problem.
Thanks, in advance, for your support.