ZTNA

Forum|Forum|4 years ago
July 14, 2021
5 replies
6388 views

does anyone here tried to configured their existing FG and FortiEMS for ZTNA setup?

skyegool

New Member

Hi,

I did, tags worked awesome before, ZTNA added complexity, and you cant activate it via GUI (bug)

You must enable it via CLI

config firewall policy edit <ID> set ztna-status enable set ztna-ems-tag <ZTNA_TAG_NAME? next end

FullmoonAuthor

New Member

skyegool wrote:
Hi,

I did, tags worked awesome before, ZTNA added complexity, and you cant activate it via GUI (bug)
You must enable it via CLI

config firewall policy edit <ID> set ztna-status enable set ztna-ems-tag <ZTNA_TAG_NAME? next end

thanks for the response mate. So having FG and EMS/FortiClient are good enough for ZTNA setup?

martin28

New Member

It does not work for me, traffic not matching the policy.

peisenberg

Staff

Hi @Fullmoon

Sorry for late response. Do you still need help with ZTNA ?

Pavol

shaibal_mitra

New Member

We are deploying ztna for the first time with fortisase and have had nothing but problems so far.Only RDP works and that takes for ever to load up.ssh does not work.Also using any ztna tags in policy breaks everything.Version is 7.0.9.

peisenberg

Staff

Hello

Can you please log a TAC ticket so we can assist you with your issue ?

Thanks

Pavol

peisenberg

Staff

Hello

Can you please log a TAC ticket so we can help you further ?

thanks

Pavol

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded