FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
adimailig
Staff
Staff
Article Id 275544
Description

This article describes that the FSSO Collector Agent can monitor logon events for accounts using multiple UPN (User Principal Name) Suffixes and authenticating using RADIUS.

Example:
Default UPN :  test_user@test-domain.com

Alternative UPN Suffix :  student.test-domain.com


Sample Login using Default UPN : test_user@test-domain.com

Sample Login using Alternative UPN Suffix : test_user@student.test-domain.com
Scope FortiGate, FSSO.
Solution In order for FSSO Collector Agent to monitor logon events from Alternative UPN suffixes, it should be:

  1. FSSO Collector Agent is running on Advance Mode:

Technical Tip: How to switch FSSO operation mode from Standard Mode to Advanced Mode


FSSO.PNG

  1. FSSO Collector Agent is listening/monitoring for Radius Accounting:
    Agent-based FSSO 
Picture1.png

Additional Steps on FSSO CA:
Select 'Select Domains to Monitor':

Capture3.PNG

 

Highlight the domain and select 'Setting'. The setting is only available/editable on Advance Mode:

 

Picture2.png

 

Input the server address, port, and user credential, then select 'OK'.

Credential is essential and it should have domain permission on Domain Controller and AD Server.

Capture4.PNG
Contributors