Hi, not sure I clearly understand the request.
What would you like to achieve ? You have some servers, running as VMs inside some host and you would like to authenticate those separate servers ? Are those having unique IPs or network connections out (like mapped physical ports)? If so, how about to use MAC or IP based policies instead of user kind of authentication ? If there is need to authenticate users running some tasks or browsers inside those VMs, then how about FSSO and Terminal Server Agents on those servers, assigning port ranges for user traffic and reporting assigned ranges and users, with actual host IP to Collector, and that Collector Agent will report those to IP based auth in FortiGate? Or how about session based authentications ?
Tomas Stribrny - NASDAQ:FTNT - Fortinet Inc. - TAC Staff Engineer
AAA, MFA, VoIP and other Fortinet stuff
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.