Skip to main content
Javier10
Javier10
Visitor III
February 26, 2024
Question

Fortigate autenticación LDAP,

  • February 26, 2024
  • 1 reply
  • 1178 views

Who knows what special characters that can't be used in passwords to authenticate to LDAP with a Fortigate 90D version V5.0.

Characters such as ñ cannot be used, which characters can fail authentication.

 

1 reply

AEK
SuperUser
AEK
SuperUser
February 26, 2024

Hi Javier

According to Microsoft:

'-!"#$%&()*,./:;?@[]^_`{|}~+<=>

Ref:  https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/password-must-meet-complexity-requirements

AEK
    Javier10
    Javier10Author
    Visitor III
    February 29, 2024

    Hi Aek

     

    I agree with Microsoft's authentication, but Fortigate when authenticating LDAP has some exception to special characters

     

    Francisco Javier.

    AEK
    SuperUser
    AEK
    SuperUser
    February 29, 2024

    Hi Javier

    In my lab I did the following:

    • Created LDAP user "test"
    • Set the password of "test" user to '-!"#$%&()*,./:;?@[]^_`{|}~+<=>
    • Then on FortiGate I went to User & Device > LDAP Servers
    • Edited my LDAP server
    • Clicked on Test User Credentials button
    • Entered user "test" and password '-!"#$%&()*,./:;?@[]^_`{|}~+<=>
    • Clicked Test button, and the test was successful

    That means both my LDAP and FG accept password with all these special characters: '-!"#$%&()*,./:;?@[]^_`{|}~+<=>

    AEK
    Terms & ConditionsAccessibility statement