VPN with LDAP authentification

Forum|Forum|6 years ago
September 10, 2019
1 reply
4247 views

Hi, i gotta a question when an user is member of two LDAP groups and both groups has different portal in teh SSL VPN, each one with different range of addres.

My question is, when the user log in, to which group belong?

REgards

Best answer by Elthon_Abreu

Can you send a print from your "ssl.root > internal" rules?

Elthon_Abreu

New Member

The Fortigate will follow the "top-down" rule... So, if the policy that allows "Group A" is above the policy from "Group B", your user will login by the Group A settings.

BR,

peterjhd1218Author

New Member

hi Elthon Abreu, thanks for your reply but still it´s not clear to my, let me get this right, i have two diferent SSL portal each one with different address range, according to you answer teh user will be log in with the first policy match that have one of the group that the user belong.

Elthon_AbreuAnswer

New Member

Can you send a print from your "ssl.root > internal" rules?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded