how could I set limit for failed logins using Forticlient in SSL Mode.
Now I have such settings:
FGT (settings) # show full-configuration
config vpn ssl settings
set login-attempt-limit 2
set login-block-time 60
but no matter of that I can login how many time I like in forticlient and every time it return me that password is incorrect, then on the 10th time I use correct password and can login - so blocking is not working.
Yes logins attemps are made in seconds, but I have multiple autoentication methods looks like local account get blocked (don't know how to verify this) and the domain users (radius authentication) are not getting blocked at all.
so I can do for local user even five wrong logins from the same laptop the same IP, status for this user on the "User and Authentication" have status "Enabled - so blocking is not working for local users. For domain (radius) users situation is the same.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.