Technical Note: Overview of Proxy Authentication Methods

This article describes the different authentication flags the FortiGate can see in WAD proxy.

FGT04 # diagnose wad user list

ID: 1, IP: 10.0.11.142, VDOM: root

  user name   : fred@DOMAIN_TEST.LOCAL

  duration    : 29

  auth_type   : 0

  auth_method : 3

  pol_id      : 12

  g_id        : 11

  user_based  : 0

  expire      : 50

  LAN:

    bytes_in=42580 bytes_out=193794

  WAN:

    bytes_in=51660 bytes_out=11576

auth_method = 3: Means the user has been authenticated with Kerberos

auth_method = 5: Means the user has been authenticated with FSSO

auth_method = 2: Means the user has been authenticated with NTLM

auth_method = 0: Means the user has been authenticated with Local user database

auth_method = 7: Means the authentication information has been retrieved back internally from the WAD informer due to a possible restart of the WAD worker process