Supported Platforms
Example: Configuring a Redirect URL for Captive Portal
This example shows how to redirect traffic to the currently connected IC Series UAC Appliance or to an IP address or domain name that you specify in a redirect URL. We recommend the default configuration that redirects traffic to the IC Series appliance for authentication.
Requirements
Before you specify the redirect URL, make sure you configure the captive portal policy. For information about creating the captive portal policy, see Example: Creating a Captive Portal Policy on the Junos OS Enforcer.
Overview
In this example, you configure the URL to redirect traffic to the IC Series appliance and after authentication to forward the traffic automatically to the protected resource. The configuration instructions in this topic describe how to set the URL to https://my-website.com.
You can redirect traffic to the currently connected IC Series appliance or to an IP address or domain name that you specify in a redirect URL. We recommend the default configuration that redirects traffic to the IC Series appliance for authentication.
If you need to override the default redirection destination, you can specify any combination of redirect options:
- https://IP or domain name/URL path/target=%dest-url%—Forwards users to the protected resource automatically after authentication with the IC Series appliance or webserver. The Junos OS Enforcer replaces the %dest-url% parameter with the protected resource URL and then forwards the protected resource URL in encrypted form to the IC Series appliance.
- https://IP or domain name/target=URL path—Forwards users to the specified URL automatically after authentication with the IC Series appliance or webserver.
- https://IP or domain name/URL path—Redirects users to the IC Series appliance authentication page but not be forwarded to the protected resource after authentication. Users must manually open a new browser window and enter the protected resource URL again after signing in.
- redirect-all—Redirects all traffic to the URL that you specify in a redirect URL.
Configuration
Step-by-Step Procedure
The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode.
To configure the redirect URL for the captive portal feature on the Junos OS Enforcer:
- Specify the redirect URL for the preconfigured captive
portal policy. [edit services unified-access-control]user@host# set captive-portal my-captive-portal-policy redirect-url "https://10.0.18.4/?target=10.0.18.4/radius-test”
- If you are done configuring the device, commit the configuration.[edit]user@host# commit
Verification
To verify the configuration is working properly, enter the show services unified-access-control captive-portal my-captive-portal-policy command.
