Restricting FortiClient VPN to a Single Concurrent Session per User

Hello Fortinet Community,

I have a customer requirement regarding remote access VPN connectivity.

My understanding is that FortiGate supports both SSL VPN and IPsec VPN for client-to-site connections. However, I have also seen recommendations to move away from SSL VPN in newer releases, and I am planning to deploy this solution on FortiOS 7.6.

The customer's requirement is very specific: they want to ensure that only one concurrent VPN session is allowed per user account. For example, if a user connects through FortiClient using their username and password, a second person should not be able to use the same credentials simultaneously from another PC and establish another VPN session.

Is this behavior supported natively by FortiGate/FortiClient? If so:

• Is there a specific setting to limit concurrent logins per user?
• Does it work for both IPsec and SSL VPN?
• Are there any best practices or recommended approaches to enforce this requirement?

I would appreciate any guidance or configuration recommendations from those who have implemented similar scenarios.

Thank you in advance.