FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
jhelder
Staff
Staff
Article Id 263233
Description This article describes how to configure user policy to require a specific browser client when connecting to the internet.
Scope FortiGate.
Solution

With the help of application control, it is now possible to enforce specific browser usage among users. This feature makes it possible to block access with certain browsers while permitting internet connectivity solely through another browser. For example: blocking access through Google Chrome and Mozilla Firefox, but enabling access through Edge.

 

Follow the steps below to implement this restriction effectively:

 

Step 1: Select the browser signature.

 

Navigate to the application control settings and choose the signature corresponding to the browser to block. The complete list of signatures can be found under 'Web.Client.'

 

kb1.PNG

 

kb2.PNG

 

Step 2: Configure the Firewall Policy.

 

Within the firewall policy settings, select the application control profile. To accurately identify the browser client, it is essential to enable deep inspection under SSL inspection. Make sure to enable this step as it is mandatory for correct identification.

 

By following these steps, it is possible to effectively control browser usage and ensure that users are confined to a specific browser for internet access. This level of control can help maintain security standards and streamline user experiences.

 

The following error appears on the user's end if the wrong browser is used:

 

kb3.PNG

Contributors