Fortinet black logo

User Guide

Home FortiPortal 5.3.4 User Guide

SSID

5.3.4
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.0.14
6.0.13
6.0.12
6.0.11
6.0.10
6.0.9
6.0.8
6.0.7
6.0.6
6.0.5
6.0.4
6.0.3
6.0.2
6.0.1
6.0.0
5.3.8
5.3.7
5.3.6
5.3.5
5.3.4
5.3.3
5.3.2
5.3.0
5.2.0
4.1.0
Copy Link
Copy Doc ID cb74fbca-cd04-11ea-8b7d-00505692583a:993691
Download PDF

SSID

The following figure shows the SSID page:

Add an SSID

To create an SSID, you must have read-only or read-write permission for DHCP.
  1. Right-click an SSID in the list and select Create New.
  2. Enter values in the relevant fields. See SSID fields.
  3. Select Save.

Update an SSID

To edit an SSID, you must have read-only or read-write permission for DHCP.
  1. Right-click an SSID in the list and select Edit.
  2. Make any changes.
  3. Select Save.

Delete an SSID

  1. Right-click an SSID in the list and select Delete.
  2. Select Yes to confirm your choice.

SSID fields

The Create New SSID and Edit SSID forms contain the following fields:

Settings

Guidelines

Interface Name

Required. Enter a name for the SSID interface.

Alias

Enter an alternate interface name to remind you what this interface is being used for.

Traffic Mode

Select one of the following:

Tunnel—Data for WLAN passes through WiFi Controller. This is the default.

Bridge—FortiAP unit Ethernet and WiFi interfaces are bridged.

Mesh—Radio receives data for WLAN from mesh backhaul SSID.

IP/Network Mask

If you selected the Tunnel traffic mode, this field is required. Enter the IP address and netmask for the SSID.

DHCP Server

If you selected the Tunnel traffic mode, you can select DHCP Server to assign IP addresses to clients. If you select DHCP Server, right-click in the Addrss Range table and select Create New to define the IP address range for a DHCP server on the FortiPortal unit. You also need to enter the netmask if you select DHCP Server.

SSID

Enter the SSID. By default, this field contains fortinet.

Security Mode

Select the security mode for the wireless interface. Wireless users must use the same security mode to be able to connect to this wireless interface.

Captive Portal—authenticates users through a customizable web page.

WPA2 Only Personal—WPA2 is WiFi Protected Access version 2. There is one pre-shared key (password) that all users use.

WPA2 Only Enterprise—similar to WPA2 Only Personal but is best used for enterprise networks. Each user is separately authenticated by user name and password.

Pre-shared Key

Required. Enter the encryption key that the clients must use.

Broadcast SSID

Optionally, disable broadcast of SSID. By default, the SSID is broadcast.

Schedule

Select when the SSID is enabled. You can select always or none.

Block Intra-SSID Traffic

Select to enable the unit to block intra-SSID traffic.

RADIUS Server

Select to use a RADIUS server. If you select this option, select the server name from the drop-down list.

VLAN Pooling

In an SSID, you can define a VLAN pool. As clients associate to an AP, they are assigned to a VLAN.

If you selected the Tunnel or Bridge traffic mode, select one of the following options:

Disable—This option is selected by default and no VLAN pools are used.

Managed AP Group—A VLAN pool can assign one of several available VLANs for network load balancing purposes. If you select Managed AP Group, select VLANs from the Available list and then select > or >> to move them to the Selected list.

Round Robin—The VLAN pool chooses the VLAN with the smallest number of clients. If the VLAN pool contains no valid VLAN ID, the SSIDʼs static VLAN ID setting is used.

Hash—The VLAN pool chooses a VLAN based on a hash of the current number of SSID clients and the number of entries in the VLAN pool. If the VLAN pool contains no valid VLAN ID, the SSIDʼs static VLAN ID setting is used.

Quarantine Host

Enable this option to quarantine devices that are connected in Tunnel traffic mode.
Previous
Next

SSID

The following figure shows the SSID page:

Add an SSID

To create an SSID, you must have read-only or read-write permission for DHCP.
  1. Right-click an SSID in the list and select Create New.
  2. Enter values in the relevant fields. See SSID fields.
  3. Select Save.

Update an SSID

To edit an SSID, you must have read-only or read-write permission for DHCP.
  1. Right-click an SSID in the list and select Edit.
  2. Make any changes.
  3. Select Save.

Delete an SSID

  1. Right-click an SSID in the list and select Delete.
  2. Select Yes to confirm your choice.

SSID fields

The Create New SSID and Edit SSID forms contain the following fields:

Settings

Guidelines

Interface Name

Required. Enter a name for the SSID interface.

Alias

Enter an alternate interface name to remind you what this interface is being used for.

Traffic Mode

Select one of the following:

Tunnel—Data for WLAN passes through WiFi Controller. This is the default.

Bridge—FortiAP unit Ethernet and WiFi interfaces are bridged.

Mesh—Radio receives data for WLAN from mesh backhaul SSID.

IP/Network Mask

If you selected the Tunnel traffic mode, this field is required. Enter the IP address and netmask for the SSID.

DHCP Server

If you selected the Tunnel traffic mode, you can select DHCP Server to assign IP addresses to clients. If you select DHCP Server, right-click in the Addrss Range table and select Create New to define the IP address range for a DHCP server on the FortiPortal unit. You also need to enter the netmask if you select DHCP Server.

SSID

Enter the SSID. By default, this field contains fortinet.

Security Mode

Select the security mode for the wireless interface. Wireless users must use the same security mode to be able to connect to this wireless interface.

Captive Portal—authenticates users through a customizable web page.

WPA2 Only Personal—WPA2 is WiFi Protected Access version 2. There is one pre-shared key (password) that all users use.

WPA2 Only Enterprise—similar to WPA2 Only Personal but is best used for enterprise networks. Each user is separately authenticated by user name and password.

Pre-shared Key

Required. Enter the encryption key that the clients must use.

Broadcast SSID

Optionally, disable broadcast of SSID. By default, the SSID is broadcast.

Schedule

Select when the SSID is enabled. You can select always or none.

Block Intra-SSID Traffic

Select to enable the unit to block intra-SSID traffic.

RADIUS Server

Select to use a RADIUS server. If you select this option, select the server name from the drop-down list.

VLAN Pooling

In an SSID, you can define a VLAN pool. As clients associate to an AP, they are assigned to a VLAN.

If you selected the Tunnel or Bridge traffic mode, select one of the following options:

Disable—This option is selected by default and no VLAN pools are used.

Managed AP Group—A VLAN pool can assign one of several available VLANs for network load balancing purposes. If you select Managed AP Group, select VLANs from the Available list and then select > or >> to move them to the Selected list.

Round Robin—The VLAN pool chooses the VLAN with the smallest number of clients. If the VLAN pool contains no valid VLAN ID, the SSIDʼs static VLAN ID setting is used.

Hash—The VLAN pool chooses a VLAN based on a hash of the current number of SSID clients and the number of entries in the VLAN pool. If the VLAN pool contains no valid VLAN ID, the SSIDʼs static VLAN ID setting is used.

Quarantine Host

Enable this option to quarantine devices that are connected in Tunnel traffic mode.
Previous
Next