Skip to main content
nithishkumar
nithishkumar
Visitor III
July 16, 2024
Question

SSL VPN users access multiple policy but we mentioned particular access

  • July 16, 2024
  • 2 replies
  • 1009 views

Hi Team,

 

We are currently using FortiOS version 7.2.8 for our network security needs. Recently, we have encountered an issue with our SSL VPN users. Despite specifying particular policies for these users, they are able to access other policies as well, which is not the intended behavior.

Our SSL VPN users authenticate through FortiAuthenticator for Multi-Factor Authentication (MFA). The expected outcome is that they should only have access to the resources defined in their specific policies.

 

 

If you have any idea about this case please share it.

I need help on this

 

@nithish.k@snsin.com #fortigate#fortiauthenticator

 

2 replies

funkylicious
SuperUser
funkylicious
SuperUser
July 16, 2024

Hi,

Is it possible that the users are part of multiple groups and when they auth they match a lower auth rule for group/policy and this way access other resources ?

"jack of all trades, master of none"
    hbac
    Staff
    hbac
    Staff
    July 16, 2024

    Hi @nithishkumar,

     

    Can you show the policies? 

     

    Regards, 

    Terms & ConditionsAccessibility statement