Description |
This article describes a working WAD debug flow for Kerberos authentication as an authentication method. |
Scope | FortiProxy. |
Solution |
In this scenario, the FortiProxy has enforced to challenge the client browser with Kerberos as an authentication method.
Kerberos Authentication Flow:
The following command can be used to capture and save the WAD debug outputs:
diagnose wad filter src <IP address> diagnose wad debug enable category auth diagnose wad debug enable category policy diagnose wad debug enable level verbose diagnose debug application fnbamd -1 diagnose debug enable
To stop debug:
diagnose debug disable diagnose debug reset
Example of debugging outputs.
Related documents: Technical Tip: FortiGate explicit proxy authentication with Kerberos Technical Tip: Configure FortiProxy for multidomain Kerberos authentication |