Skip to main content
a_t1
a_t1
New Member
July 3, 2023
Question

FortiClient/EMS settings

  • July 3, 2023
  • 1 reply
  • 1744 views

Hey folks, I have a quick question about the EMS settings in Forticlient. Currently we're pushing the client install through Intune, and it comes pre-packaged with the private IP of the EMS server. This works great in the office where it finds the server and grabs the settings, including the public IP for when it leaves the office. What I'd like to do is set the default IP it installs with to the public IP of the EMS server. I believe the correct setting to change is the 'listen on IP' in the EMS console, even if it's just for a minute or two to compile a new installer.

However, my lead infrastructure tech is telling me that none of the settings in the EMS console are able to change, otherwise the entire system will break. 90+% of our workforce is fully remote, so the only IP in regular use is the public one. The Forti suite isn't my area of expertise, so his assessment of the situation could be correct, but it just doesn't make intuitive sense. Any thoughts?

1 reply

Fortibeast_Andy
Fortibeast_Andy
Visitor III
July 4, 2023

Hello
I would create a DNS entry on your public zone, e.g. ems.something.com, on your public ip address of the ems server. then create an internal split dns entry with the same fqdn and let it point to the internal ip. should actually then work with the changeover without interruption.
just as an idea :)

 

Regards,

Andy

Terms & ConditionsAccessibility statement