Hello all,
I cannot find a specific article how to do the following on the Fortinet site, so help would be much appreciated (even to point out kb article displaying how to do it).
I have a forticlient tunnel setup currently. I need to be able to give different levels of access. I will give you an example:
User1 --> Can only access 192.168.1.0 / 24 subnet (which is a vlan)
User2 --> Can only access 192.168.2.0 / 24 subnet (Which is another vlan)
..Etc.
Now The only way I can see doing this is by multiple forticlient tunnels? But that would be difficult to maintain if I require 8 users having access to different resources.
Thank you!
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
What Firmware are you running? In 5.2 (I think) and later you can apply User (Groups) to the SSL.Root > Interface policies
Hello,
We are currently using 5.2 firmware.
Just to clarify this is a IPSEC forticlient tunnel; not SSL.
I also tried to create a source from Forticlient > Internal with Source user and specified a local fortigate user which is also the user connecting, and I cannot connect to that specific internal resource when I specify the local user. When taking off the user I can connect fine.
Not sure what else needs to be done.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1702 | |
1092 | |
752 | |
446 | |
228 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.