Hi to Everyone,
I am new to the Forti firewalls but I have firewall knowedge and I wanted to ask if the Fortigate Firewalls can share user information using FSSO with without Fortiauthenticator?
I see that the FSSO is used to share user to ip maping , groups etc but from what I have seen from the documentation and youtube :) the Fabric Connectors can be the DC agent installed on a windows computer or the Fortiauthenticator but not another Fortigate firewall. Is that right?
I want the users to authenticate to the VPN forti firewall and then the other forti firewalls after the VPN firewall to take the user info using FSSO, where the configured connector will be the VPN firewall but as I mentioned I do not know if this is possible.
Directly configuring the DC agent as a connector on the firewall:
Configuring the DC agent on the Fortiauthenticator and then configuring the Fortiauthenticator as a connector on the firewall: