Dear all,
currently i have a fortigate 100d with firmware version v5.2.0,build0589. i planing to manage user policy with Identity based policy feature. but i unable found this when i configure my policy. Any one can teach me how to enable Identity based policy feature?
Solved! Go to Solution.
FortiOS 5.2.x , in contrary to 5.0.x or 4.3 do not use sub-policy levels for identity based policies.
It simply has users and groups as part of base match pattern aside to source/destination IP, Service etc. See GUI of the policy and "Source user(s)" selection box right within source identification.
I'd suggest to check FortiOS 5.2 Release Notes and What's new guide to get idea of auth differences between 5.0 and 5.2 style as the differ a lot.
Tomas Stribrny - NASDAQ:FTNT - Fortinet Inc. - TAC Staff Engineer
AAA, MFA, VoIP and other Fortinet stuff
FortiOS 5.2.x , in contrary to 5.0.x or 4.3 do not use sub-policy levels for identity based policies.
It simply has users and groups as part of base match pattern aside to source/destination IP, Service etc. See GUI of the policy and "Source user(s)" selection box right within source identification.
I'd suggest to check FortiOS 5.2 Release Notes and What's new guide to get idea of auth differences between 5.0 and 5.2 style as the differ a lot.
Tomas Stribrny - NASDAQ:FTNT - Fortinet Inc. - TAC Staff Engineer
AAA, MFA, VoIP and other Fortinet stuff
xsilver wrote:FortiOS 5.2.x , in contrary to 5.0.x or 4.3 do not use sub-policy levels for identity based policies.
It simply has users and groups as part of base match pattern aside to source/destination IP, Service etc. See GUI of the policy and "Source user(s)" selection box right within source identification.
I'd suggest to check FortiOS 5.2 Release Notes and What's new guide to get idea of auth differences between 5.0 and 5.2 style as the differ a lot.
thanks!
xsilver wrote:FortiOS 5.2.x , in contrary to 5.0.x or 4.3 do not use sub-policy levels for identity based policies.
It simply has users and groups as part of base match pattern aside to source/destination IP, Service etc. See GUI of the policy and "Source user(s)" selection box right within source identification.
I'd suggest to check FortiOS 5.2 Release Notes and What's new guide to get idea of auth differences between 5.0 and 5.2 style as the differ a lot.
So, if i authenticate a user and i cant see it on the monitor user, what can i do ? Also, when i logon by FSSO it doesn't Monitor those users too.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.