ASK - user for system - limited to monitor VPN IPSEC

Forum|Forum|7 years ago
November 20, 2018
1 reply
2807 views

hi there,

I need to assign user with authorize:

- change their password

- access IPsec monitor, and able to bring-up and bring down connection, but restrict to modify its settings

this user can't access other menus besides above.

can I do that?

we are using:

fortigate 60D with firmware 6.0 something.

looking for your help, guys.

thanks in advance

xsilver_FTNT

Staff

Hi,

you can try to make admin with very limited access profile.

You can also have end users on LDAP so no need to access FGT to change their password.

And VPN would be better to be set with auto negotiate so whenever there will be data to destination behind it the VPN will be brought up by FGT automatically and when data stops to flow it will be down again. Automatic withotu necessity to have user manually interfering with it.

papapuffAuthor

New Member

hi Tomas,

thanks for share. sorry late reply.

I tried to search limited admin, but not found. can I get more guidance?

about VPN, yes it's been set to auto negotiate, but somehow I need to manually interfering it. maybe there is "timeout" for several times. not sure.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded