Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
oca
New Contributor

SSl VPN user match two portal profile

Hello,

We use SSL VPN to allow user's specific access by AD-linked group. We have the case where a user belongs to 2 different AD groups which each correspond to a portal profile. A specific policy is created to manage access for each portal.

 

What is the criterion that applies to define which policy will be used? in my case, the policy that should be used is before the other policy but it doesn't work. It is the 2nd which is applied.

 

Fortigate version 7.2.7

2 REPLIES 2
xshkurti
Staff
Staff

GUI, under User & Device > User Definition you will see all the users. In the far right column there's a column called 'Ref'. Click the number next to the user to show you all the groups it's been added to.
This way you can check in what groups is this user recognized by FortiGate.

oca
New Contributor

thanks for the response.

Users are not defined locally but via a user group linked to an LDAP group. So there are no users in User Definition.

Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors