Help
FortiClient
FortiClient proactively defends against advanced attacks. Its tight integration with the Security Fabric enables policy-based automation to contain threats and control outbreaks. FortiClient is compatible with Fabric-Ready partners to further strengthen enterprises’ security posture.
jkoay
Staff & Editor
Staff & Editor

Created on ‎05-27-2024 09:51 PM

Article Id 317614

Technical Tip: Tag Windows endpoints that are logged into domain via registry key value data

Description This article describes how to configure registry key-value data as a zero trust tagging rule to tag domain-joined Windows devices.
Scope

FortiClient v7.2, FortiClient EMS v7.2.
Solution

It is only possible for FortiClient EMS to check up-to-date data in registry key value data if FortiClient EMS/FortiClient are running on v7.2.

 

To configure ZTNA tagging rule, go to FortiClient EMS -> Zero Trust Tags ->  Zero Trust Tagging Rules -> Add -> Add Rule:

 

OS: Windows

Rule Type: Registry Key

Registry Key:

 

Key (required): [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]

Key Name: "Domain" (With double quotes)

Value: "mango.local" (With double quotes)

 

Registry Key Data Value.png

 

Note:

If the data value is a string type, enclose it with double quotes.

 

Results:

 

Results Domain.png
1681
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.