Hi all,
In my topology remote users connect to Fortigate using Forticlient over IPSec VPN. I would like that Fortigate enforcement utm features to Forticlient using different Forticlient Profiles based on AD-Groups, not on the devices groups. All documentations only show how to do this using device identification group. Questions? This configuration is possible? Is there some documentation that explain in details?
Regards, Claudio Rezende
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi,
It´s not possible at this moment, you can only apply per device.
This is what I want to see in the future.
1. Set profile per user and not just device.
2. To be able to blacklist files on client. (for example block all .js files)
3. Central quarantine and release of files on client, now you cannot release files centrally.
4. Set on-net/off-net on more modules than only web filtering.
5. DLP on FortiClient, as you would in the firewall.
FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C
Hi Claudio,
I too have been looking at this and found no way to do this other than using Device Profiles, would be great if they could roadmap this functionality in.
Dan
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1714 | |
1093 | |
752 | |
447 | |
232 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.