Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
AEK
SuperUser
SuperUser

FortiPAM Web launcher from WAN

Hello PAM admins

FortiPAM 1.4.1.

I'm very new in FortiPAM and I have questions regarding Web launcher.

When I'm in company's local network all works fine, Web launcher, RDP launcher and SSH launcher.

However when I'm outside and connect from public IP and try run Web launcher it doesn't work, while SSH launcher and RDP launcher still work fine.

I noticed that for both RDP and SSH launcher, PAM opens the browser tab with address bar contains a public address like https://pam.mycompany.com/someaddress.

While for Web launcher it opens the private IP of the target, which naturally can't work from WAN without some proxy on the client.

If I'm not wrong I think it needs FortiClient in order to work, right?

So my question:

  • Does it work with FortiClient for Windows, Linux & MacOS?
  • Does it require EMS?
  • Is there a plan to make it work in future release without FortiClient? (other PAM products can do it without agent)
AEK
AEK
10 REPLIES 10
pjaco

Hi,

we have same problem in our environment. One question to your troubleshooting guide. Number 6 - why? Why do I have to forward all ports from external IP to FortiPAM? Customer doesn't have much free external IP addresses, we are sharing one address with multiple services. One of them is FortiPAM portal. Is it really necessary? Or could you specify which ports are needed? (except 443). Thank you.

Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors