Question regarding licensing

Forum|Forum|10 years ago
April 7, 2016
1 reply
4570 views

Hello,

I have a question regarding licensing.

If you use FSSO agents deployed on Windows servers and configure a Fortigate to use them, you dont have any limit on the number of users gathered from the windows security event logs.

We have bought the FortiAuthenticator primarily for using it in combination with the FortiClient SSO Mobility Agent Service.

We have a license for 2100 FSSO users and a 2000 Forticlient Workstation license.

If we configure the FortiAuthenticator to poll the windows event logs in stead of the FSSO agents our license is almost immediately used.

Using the FortiAuthenticator in stead of the FSSO agents is in my eyes a better solution then using the agents.

Are there plans to not count the users gathered from the windows event logs from a license perspective?

regards

Carl_Windsor_FTNT

Staff

>If we configure the FortiAuthenticator to poll the windows event logs instead

>of the FSSO agents our license is almost immediately used.

Polling will detect the number of users who are active on the domain but you will need to enable logoff detection to remove them when they leave otherwise they will be "active" in the FSSO table for the default timeout period (8 hours). SSOMA is a good method for FSSO because it will detect login, IP change, logoff and power-off.

>Are there plans to not count the users gathered from the windows event logs from a license perspective?

FAC license model is based on concurrent users for FSSO and there are no plans at this point in time to change this.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded