FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
rmreddy
Staff
Staff
Article Id 362881
Description This article describes how to move the authentication rule to the top and the bottom in SSL VPN.
Scope FortiGate.
Solution

To view authentication rules, it is necessary to execute the below commands.

 

config vpn ssl settings

    config authentication-rule

    show

    end

end

 

authentication_rule.PNG

 

In the above example, if it is desired to move the rule ID 3 to the top of 1, it is necessary to execute the below commands.

 

config vpn ssl settings

    config authentication-rule

    move 3 before 1

    end

end

 

Now, the rule ID 3 is top to 1.

authentication_rule1.PNG
Similarly, if it is desired to move the rule ID 1 to below 2, it is necessary to execute the below commands.

config vpn ssl settings

    config authentication-rule

    move 1 after 2

    end

end


Now, the rule ID 1 is below 2.


authentication_rule2.PNG
In GUI, to view the authentication rule, it is necessary to navigate to VPN -> SSL settings.


authentication_rule3.PNG
Note:

To move the authentication rule, the option is through CLI only, the GUI option is not available.

 

Further starting from v7.4 the SSL VPN settings will be hidden.

 

To enable SSL VPN web mode:

 

config system global
    set sslvpn-web-mode enable
end

 

To enable the VPN -> SSL-VPN GUI menus:

 

config system settings
    set gui-sslvpn enable
end