SSl VPN user match two portal profile

Forum|Forum|1 year ago
August 22, 2024
1 reply
972 views

Hello,

We use SSL VPN to allow user's specific access by AD-linked group. We have the case where a user belongs to 2 different AD groups which each correspond to a portal profile. A specific policy is created to manage access for each portal.

What is the criterion that applies to define which policy will be used? in my case, the policy that should be used is before the other policy but it doesn't work. It is the 2nd which is applied.

Fortigate version 7.2.7

SSL-VPN

xshkurti

Staff

GUI, under User & Device > User Definition you will see all the users. In the far right column there's a column called 'Ref'. Click the number next to the user to show you all the groups it's been added to.
This way you can check in what groups is this user recognized by FortiGate.

ocaAuthor

New Member

thanks for the response.

Users are not defined locally but via a user group linked to an LDAP group. So there are no users in User Definition.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded