Hello all,
Please i found this work around to prevent CSRF attack on ssl vpn web portal:
Syntax:
config vpn ssl settings
set check-referer [enable|disable]
end
unforunately, this does not seem to be supported on FortiOS 5.2.
I am currently using fortiOS 5.2.10 and at the (settings)# prompt, set check-referer is not a valid option.
Please any help on this?
Thanks.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.