Hello,
I'm looking for a way for a web application(it uses cURL) to get access to the webpage on a host (running a webserver 10.0.4.55) behind a fortigate. I have a user setup, who can login from a remote location. This will show him a SSLVPN web bookmark, that when clicked will redirect him to the proxy url :
Is there a way that I can use POST or other method that works with cURL, to send credential information, and get redirected directly to this proxy url?
Or is there a way that I can generate a working fgt_sslvpn_sid to build the url?
Kind regards
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hey flbits,
I'm not sure if there is a way to use cURL or something to interact with SSLVPN web bookmarks, sorry.
The goal is to have a secure connection to the webbrowser (which you're achieving through web SSLVPN at the moment), correct?
You could look into ZNTA, a new feature introduced in 7.0.
That allows you to create reverse HTTP proxies on the FortiGate (much like VIP) with additional security (such as authentication requirements and/or, if you have FortiClient EMS, specific tags).
If you don't have an EMS, you can also create ZTNA rules without tags, and just require authentication.
Created on 04-14-2022 01:30 AM Edited on 04-14-2022 02:42 AM
@Debbie_FTNT thank you for the tip, but ZTNA won't work my purpose.
I'm back to the SSLVPN web bookmarks. So far I've been able to authenticate server-side to the fortigate and found a workaround to get the link.
But is there maybe a API to do this?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.