Hello,
EMS is behind the firewall but the invitation code is based on the internal FQDN.
How can I solve this ? Manual entries are not allowed.
KR
Laurent
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello @lpi ,
You can configure your public IP address or fqdn on EMS settings. After that, this invitation will be sent with a configured fqdn or IP.
Thank you for sharing valuable insight.
Hello,
I am of course already using the FQDN but with the internal server resolution.
If I put the external FQDN, all internal traffic will be also routed back to this VIP address instead of the local internal address. Moreover port 443 is not allowed on that external VIP.
KR
Laurent
You have to add an entry on the public DNS that resolves the FQDN of EMS to the public IP (VIP) you have configured in the firewall.
For the internal DNS you could configure the same FQDN to be resolved to the private IP address of the EMS.
Since the initiation will contain the domain only, it will work for both clients in public and private network.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1641 | |
1069 | |
751 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.