Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
if you have an AD you could use some ad objects and forbid access to servers or services if not a vaild ad user is logged on the client that tries to access.
--
"It is a mistake to think you can solve any major problems just with potatoes." - Douglas Adams
I think the simplest answer is that you need to create a different LAN (subnet/VLAN) for the user and control that access through firewall policy as well. So instead of just LAN and WAN on the firewall you would have LAN, WAN, and guest network where the user plugs in and gets an IP, then has to meet firewall policies (including authentication) to access either of the other networks.
Ciao e grazie per la risposta.
Non avevo pensato a questa soluzione.
Ti farò sapere al più presto.
Grazie infinite per il tuo suggerimento
Hello and thanks for the reply. I hadn't thought of this solution. I'll let you know as soon as possible. Thanks so much for your suggestion
Ciao e grazie infinite per il tuo suggerimento.
Come ho già scritto nel mio post di apertura, ho un AD che mi controlla l'accesso alle condivisioni.
Ovviamente basta inserire user e password ed accedo al dominio ed alle cartelle condivise.
Mi sarebbe piaciuto far uscire come autenticazione anche verso la Lan Privata la pagina di autenticazione di fortigate ( la stesa che si ottiene abilitando il captive portal )...
Forse non mi sono spiegato molto bene e per questo mi scuso..
Altra prova fatta è dividere le reti, ma niente non riesco .. In realtà comunque non so se è possibile...
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1709 | |
1093 | |
752 | |
446 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.