well, configured LDAP does not equal to visible users. Thay have to authenticate first to be visible.
If they do not authenticate (should but are not questioned to do so), then use 'diag debug flow' (check KBs for detailed usage) to check which firewall policy is used instead of intended one which I assume contain authentication settings.
If not sure about settings, have a look to Authentication guide on docs.fortinet.com or check cookbooks for specific settings. Because someone probably documented that already.
I have one AD and 2 additional domains. so i sink additional domain user to AD and then i configure LDAP and install FSSO in AD . and i can view additional domain user in FSSO but when i configure LDAP i can only view AD user in Monitor -->firewall , and can't view other additional domain user,
If I got it correctly then Monitor do not show FSSO based users while it does show LDAP based ones.
If it's so then I guess that FSSO users haven't made any traffic as they do appear in default Monitor/Firewall User Monitor only when there is accountable traffic. To fix that and see ALL FSSO users regardless of the traffic, pay attention to the switch on top right corner of the monitor page. Details in attachment.
