FortiClient posture check for remote access - what is the minimum required for setup?

1ryan1 · ‎11-29-2023

Hello, I am looking for clarification in whether I need to migrate to ZTNA for remote access to do a basic posture check? I am looking to see if we can block an incoming SSLVPN request from a user has their local antivirus not running or is not up-to-date? We are using Forticlient EMS.

https://community.fortinet.com/t5/4D-Documents/SSL-VPN-to-ZTNA-Migration-Guide/ta-p/286534

hbac · ‎11-29-2023

Hi @1ryan1,

You don't necessarily need ZTNA. FortiClient free version supports host checks. Please refer to https://docs.fortinet.com/document/forticlient/7.0.0/new-features/651315/fortigate-powered-host-chec...

Regards,

View solution in original post

hbac · ‎11-29-2023

Hi @1ryan1,

You don't necessarily need ZTNA. FortiClient free version supports host checks. Please refer to https://docs.fortinet.com/document/forticlient/7.0.0/new-features/651315/fortigate-powered-host-chec...

Regards,

1ryan1 · ‎11-29-2023

Awesome, didn't see this option. Are all Forticlient versions supported or just the free one? I tested this by disabling my AV and forcing the host check to look for it, and it still accepted the connection.

1ryan1 · ‎11-29-2023

Disregard last comment, Win defender was also running. It works.

FortiClient posture check for remote access - what is the minimum required for setup?

Nominate a Forum Post for Knowledge Article Creation

You are leaving our website