3) TSE-IPAdress1 -- User01 -- correct group1 -- allocated Port Group -- TS-Agent
4) TSE-IPAdress1 -- User02 -- correct group2 -- allocated Port Group -- TS-Agent
5) TSE-IPAdress1 -- User03 -- correct group3 -- allocated Port Group -- TS-Agent
So now it happens that many Users are logged in, but it seems that for the firewall policy always entry number 1) or 2) is used. Entry number 1) 2) is always the last RDP User who logged in, I think. And now User01 gets the Firewall restrictions for User03....
I think that the DC-Agent entries about the RDP User causes the failures, because in this situation only the TSAgent entries are usefull for me, all other are trash. Is there a way to tell the firewall to prefer the TS-Agent entries?
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.