Using the Fortinet Single Sign On Agent Configuration from Headquarters

Forum|Forum|1 year ago
October 14, 2024
1 reply
1633 views

Good morning , guys I have fortigate in my headquarters , and now I'm going to close a VPN between this headquarters and branch , the question and I believe not but it does not hurt to ask with this tunnel I can use Fortinet Singles Sing On agent configuration that is in my AD . Or will I have to create Webfilter and application Control separately for this firewall ?

Best answer by ebilcari

Are the PCs in the branch part of the same domain/AD? Both FGTs can have all the FSSO sessions that ca be used in the policies.

Will the branch tunnel all traffic to HQ or you will need the FSSO session also in the branch FGT policies?

ebilcariAnswer

Staff

Are the PCs in the branch part of the same domain/AD? Both FGTs can have all the FSSO sessions that ca be used in the policies.

Will the branch tunnel all traffic to HQ or you will need the FSSO session also in the branch FGT policies?

Emirjon

Marcos_FDS1012Author

New Member

Hello,

I will explain better, today I have in my F60 fortigate matrix where I have Fortinet Singles Sing On agent configuration this working perfect, I made the purchase of another F60 I will close an IPSec VPN between the two, the doubt when closing the VPN I can get the information of this Fortinet Singles Sing On agent configuration that is in the matrix? Do I need to do any additional configuration on the Fortinet Singles On agent configuration in my branch?

ebilcari

Staff

Is the 'matrix' the translation of 'Security Fabric'? If the branch will be part of the Fabric even though over an IPSEC tunnel, it should synchronize the FSSO settings with the downstream FGT.

Emirjon

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded