Explicit Proxy Multiple Realm

mfo · ‎04-13-2018

Hi,

I have a fortigate using explicit proxy configured.

The realm is populated with domain.local

I need to use a second realm with the same keytab (we are adding a new UPN suffix in AD for Office 365 federation needs)

The new realm to add would be domain.com

It is possible and does someone know how to do this change ?

emnoc · ‎04-13-2018

Are you talking about the realm under "config web-proxy explicit" ?

Ken

PCNSE

NSE

StrongSwan

mfo · ‎04-16-2018

Yes

I need to know if it is possible to configure multiple realm.

James_G · ‎01-21-2019

Hi - did you find a solution

I think I have same issue

mfo · ‎01-21-2019

Unfortunately, it seems to not be possible.

So I had no solution for that.

James_G · ‎01-21-2019

Thanks anyway - I have a call logged with support to see what they have to say on the subject

We can't be the only people that have had to change the UPNs for O365

O365 has caused me nothing but issues :(

James_G · ‎01-23-2019

I think I have this sorted - this is under 6.0.4 for reference

You can have multiple authentication rules, each with different source address filters, that reference different authentication schemes. Each scheme references a different "domain controller" object - these can physically reference the same LDAP server but we keep the domain name different.

I've tested and it seems to all be OK.

Thoughts?

config user domain-controller edit "domain.local" set ip-address 10.10.10.10 set domain-name "domain.local" set ldap-server "DC01" next end

config user domain-controller edit "domain.com" set ip-address 10.10.10.10 set domain-name "domain.com" set ldap-server "DC01" next end

Explicit Proxy Multiple Realm

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website