Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Jack_T
New Contributor

Created on ‎06-29-2014 05:33 AM

SSL Vpn with Active Directory authentication

Hi all, I would to create a SSL Vpn with Active Directory authentication When I create a new user, I choose remote, LDAP, then I search for domain users but I can' t find anything (no errors, seems that Fortigate can' t search on domain) What are the correct steps for LDAP server and for domain to grant Fortigate to search in Active Directory? Is It possible? Many thanks in advance :) Best regards, Jack
13155
0 Kudos
2 REPLIES 2
stukat
New Contributor

Created on ‎06-30-2014 12:08 PM

Create a LDAP Server under User & Device, Authentication. Create a User Group under User & Device, User. Set it up using " Firewall" as FortiNet doesn' t allow FSSO via VPN. Use the previously created AD Server and then enter the group name. It must be a CN; ie. CN=Users,OU=PA,DC=Company,DC=com Create a ssl.root policy which uses the created user group as the source. Destination is your internal network. That' s the basics of it.
1251
0 Kudos
rwpatterson
Valued Contributor III
In response to stukat

Created on ‎06-30-2014 12:48 PM

This old post is dated, but may provide a clue.

Bob - self proclaimed posting junkie!
See my Fortigate related scripts at: http://fortigate.camerabob.com

Bob - self proclaimed posting junkie!See my Fortigate related scripts at: http://fortigate.camerabob.com
1252
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.