In my FortiClient EMS Cloud all users are AD SAML Users. All of our AD users should be assigned a VPN Policy. However, some users were put in the Default Policy Group. I have since gone through and added the missing AD groups yet the users still show up under the Default Policy. What do I need to do to get the users to change Policy? I picked on one user and had him Disconnect from EMS and then re-connect but that did not help.
To ensure that the users are assigned the correct VPN policy in FortiClient EMS Cloud after adding them to the appropriate AD groups, follow these steps:
1. Verify AD Group Assignments:
- Double-check that the users are correctly added to the desired AD groups that have the VPN policy assigned.
2. Sync Policies:
- Force a policy synchronization in FortiClient EMS Cloud to ensure the changes are reflected:
- Go to Endpoint Policy & Components > Managed Policies.
- Click on the policy that contains the correct VPN settings.
- Click on the "Sync Now" button to synchronize the policy with the endpoints.
3. Endpoint Reconnection:
- After syncing the policies, ask the users to disconnect and reconnect FortiClient on their endpoints to apply the updated policies:
- Instruct the user to disconnect FortiClient from EMS.
- Reconnect FortiClient to EMS to fetch the latest policies.
4. Policy Application:
- Monitor the user's endpoint to confirm if the correct VPN policy is now applied:
- Check the endpoint details in FortiClient EMS Cloud to see if the updated policy is assigned.
By following these steps, you should be able to ensure that the users are correctly assigned the VPN policy based on their AD group memberships in FortiClient EMS Cloud.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.