Skip to main content
netadmin
netadmin
Visitor III
October 14, 2022
Question

unable to configure user group based policy for forticlient VPN

  • October 14, 2022
  • 2 replies
  • 1170 views

Hi Guys,

 

We are using FortiClient with SAML authentication by azure ad . Users are able to authenticate by azure-ad and OTP by the authentication rule configured. for example user is allowed in group HR.

Later we have configured user group policy for the users in HR, user HR 1 is added to group finance for giving access to finance network. 

 

user HR2 is added to group corporate for giving access to corporate network. But this user based policy rules are not working and not getting any hits.

Both HR1 and HR2 are added to group HR so they can authenticate and make successful VPN connection. HR1 is added to group finance and HR2 is added only to group corporate but they cant access their respective networks. 

 

Any views from for the above issue. please advise. 

 

Regards

 

FortiClient FortiGate

2 replies

Anthony_E
Staff
Anthony_E
Staff
October 16, 2022

Hello netadmin,

 

Thank you for using the Community Forum.

I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.

 

Regards,

Best Regards
Anthony_E
Staff
Anthony_E
Staff
October 19, 2022

Hello netadmin,

 

I have found this document:

 

https://docs.fortinet.com/document/fortigate/6.0.0/handbook/527388/multiple-user-groups-with-different-access-permissions

 

Could you please tell me if it helps?

 

Regards,

Best Regards
Terms & ConditionsAccessibility statement