Hi guys,
I have a client with FSSO enable on this LAN. (fortigate 100D 5.4.4)
Everything is OK for their RDS Farm, local computer too except for 3 users.
This 3 users have a workstation with Windows XP.
So i think, there is maybe a little issue on that OS for FSSO, but i don't find anything about this issue on the web.
I was guessing that it was an issue about NTLM authentication (in my memory, XP use first LM authentication).
So i changed security policy to enable NTLMv2 only and refuse LM, but the issue is still here.
Can someone confirme me that there is no specific issue between XP and FSSO please?
Thanks
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi recha,
as they do domain logons, probably, then why NTLM ? (regardless I think it should work, but have no XP in lab anymore).
If you have Collector agent then read events from those XP workstations via WinSec or DCAgent and it worked for me in past.
Set Collector's log to debug level temporarily and see why those 3 XPs are having a hard times.
Maybe the can get into FSSO list but they are removed during workstation check as by default MSFT workstations do not have Remote Registry Service running and I guess that XP do not support WMI as it came with Win2000 and later models as standard API replacing RDP/RPC calls.
Kind regards,
Tomas
Tomas Stribrny - NASDAQ:FTNT - Fortinet Inc. - TAC Staff Engineer
AAA, MFA, VoIP and other Fortinet stuff
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1517 | |
1013 | |
749 | |
443 | |
209 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.