Skip to main content
yesowemm
yesowemm
New Member
July 10, 2017
Question

FSSO Issues

  • July 10, 2017
  • 1 reply
  • 25325 views

I am having issues using my FSSO on my Fortigate 1000D. I have connected my to my LDAP and i am able to pull all my users. 

 

But when i try using my FSSO, my status is disconnected even though i am using the same password i used for the LDAP polling.

 

My firmware is 5.4.5. I have tried using both the Polling Active Directory Server and the Single Sign-On Agent. Can someone help me resolve this issue?

 

 

    1 reply

    ipns
    ipns
    New Member
    July 11, 2017

    To use FSSO u need a FSSO agent on one of your Domain Controllers.

    Did you install it?

    http://cookbook.fortinet....-advanced-mode-expert/

    yesowemm
    yesowemmAuthor
    New Member
    July 11, 2017

    I have installed the Agent on the Active Directory and Configured it. My issue is that the Fortigate SSO after configuration still has the status to be disconnected. Even though i have the same password configured both the Agent and on the Fortigate

    AtiT
    AtiT
    New Member
    July 12, 2017

    Hello,

    Do you have TCP/8000 port open on the machine where the FSSO Collector Agent is insalled?

    Can you do sniffer packet whether there is a communication on the TCP port 8000?

    Do you see heartbeat from the FSSO Collector agent issuing the commands:

    diagnose debug reset

    diagnose debug application authd -1

    diagnose debug enable

    --- you should see something: _event_read[name_of_the_fsso_object_on_fortigate]: received heartbeat 113502

     

    Can you check the FSSO Collector Logs for error messages? Also you can try to set the debug level to info and check whether you something like: 1 FortiGate connected

     

    Terms & ConditionsAccessibility statement