Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

Navigation
Guide That Contains This Content
[+] Expand All
[-] Collapse All

    Example: Configuring a Redirect URL for Captive Portal

    This example shows how to redirect traffic to the currently connected IC Series UAC Appliance or to an IP address or domain name that you specify in a redirect URL. We recommend the default configuration that redirects traffic to the IC Series appliance for authentication.

    Requirements

    Before you specify the redirect URL, make sure you configure the captive portal policy. For information about creating the captive portal policy, see Example: Creating a Captive Portal Policy on the Junos OS Enforcer.

    Overview

    In this example, you configure the URL to redirect traffic to the IC Series appliance and after authentication to forward the traffic automatically to the protected resource. The configuration instructions in this topic describe how to set the URL to https://my-website.com.

    You can redirect traffic to the currently connected IC Series appliance or to an IP address or domain name that you specify in a redirect URL. We recommend the default configuration that redirects traffic to the IC Series appliance for authentication.

    If you need to override the default redirection destination, you can specify any combination of redirect options:

    • https://IP or domain name/URL path/target=%dest-url%—Forwards users to the protected resource automatically after authentication with the IC Series appliance or webserver. The Junos OS Enforcer replaces the %dest-url% parameter with the protected resource URL and then forwards the protected resource URL in encrypted form to the IC Series appliance.
    • https://IP or domain name/target=URL path—Forwards users to the specified URL automatically after authentication with the IC Series appliance or webserver.
    • https://IP or domain name/URL path—Redirects users to the IC Series appliance authentication page but not be forwarded to the protected resource after authentication. Users must manually open a new browser window and enter the protected resource URL again after signing in.
    • redirect-all—Redirects all traffic to the URL that you specify in a redirect URL.

    Configuration

    Step-by-Step Procedure

    The following example requires you to navigate various levels in the configuration hierarchy. For instructions on how to do that, see Using the CLI Editor in Configuration Mode.

    To configure the redirect URL for the captive portal feature on the Junos OS Enforcer:

    1. Specify the redirect URL for the preconfigured captive portal policy.
      [edit services unified-access-control]user@host# set captive-portal my-captive-portal-policy redirect-url "https://10.0.18.4/?target=10.0.18.4/radius-test”
    2. If you are done configuring the device, commit the configuration.
      [edit]user@host# commit

    Verification

    To verify the configuration is working properly, enter the show services unified-access-control captive-portal my-captive-portal-policy command.

    Modified: 2017-03-01