We are using FSSO and AD groups to manage authentication and access. Device is Fortigate 80E v6.07. We noticed a strange behavior and I would like to know if this is normal behavior or not. Let's say I have the following setup:
[ul]Scenario: User B uses the workstation to start a remote desktop session to his own remote computer (from inside user A session). He provides his credentials to the rdp session then closes it after he's done. What I see in the webfilter logs :(
[ul]It stays like this for many hours in a row, meaning userA now has regular internet access. If we lock/unlock the workstation using userA credentials, then things go back to normal.
Is this a bug ? At least, I would expect that it returns to userA without having to lock the PC...
Hello,
It won't return to user A as there is nothing that should trigger such action. Collector Agent does not keep table of previous users on a workstation. What might help you though is described n this KB article:
Technical Tip: FSSO RDP logon override https://kb.fortinet.com/k....do?externalID=FD45999
Best Regards,
Alivo
livo
Hi Alivo,
thanks very much for pointing me to this KB, that will probably solve my problem !
Best regards
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.