FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
fgilloteau_FTNT
Description

This article describes the different authentication flags the FortiGate can see in WAD proxy.



Solution
To check authenticated users:

FGT04 # diagnose wad user list
ID: 1, IP: 10.0.11.142, VDOM: root
  user name   : fred@DOMAIN_TEST.LOCAL
  duration    : 29
  auth_type   : 0
  auth_method : 3
  pol_id      : 12
  g_id        : 11
  user_based  : 0
  expire      : 50
  LAN:
    bytes_in=42580 bytes_out=193794
  WAN:
    bytes_in=51660 bytes_out=11576
auth_method = 3: Means the user has been authenticated with Kerberos
auth_method = 5: Means the user has been authenticated with FSSO
auth_method = 2: Means the user has been authenticated with NTLM
auth_method = 0: Means the user has been authenticated with Local user database
auth_method = 7: Means the authentication information has been retrieved back internally from the WAD informer due to a possible restart of the WAD worker process


Contributors