Looking for advice on how to setup portal access based on machine. My scenario is we currently have two portals. One portal has full network access, and the other portal has only RDP access to the network. The full access portal is for users that have company laptops and need full access to email, CIFS shares, etc. The RDP only portal is for users that have physical desktops and only need to remote to the machine from their home computer. My issue is that some of the users with laptops will occasionally leave their laptops at the office and then remote into their laptop from a home computer. The issue is that when the laptop users connect to the SSL vpn from their home machine, they are getting full access to the network and thus opening the network up to vulnerabilities. I know you can lock down portals to specific MAC addresses, which seems like a nightmare to manage. My ideal scenario would be to lock down the full access portal to the company laptop either via MAC address or certificate of something like that, and then if the user connects via any other machine, they would get the RDP portal only. Not sure there is any way users assigned to multiple portals?
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.