I encountering an issue while applying policy on Mac devices.
The policy is to block devices that don't have FileVault enabled when connecting whether from VPN or internal network.
My issue is that I can connect to the VPN and internal network while the device tag is non compliant.
Note that I can apply policies on Windows devices.
Please I appreciate your help.
Go to Solution.
Hi all, After contact Fortinet support, they confirmed that Mac and Linux don't support this feature according to the below documentation under Tag:
View solution in original post
Any suggestion ?
Hello alaaelrayes,Can you share the endpoint tag snapshot from the client and the ZTNA policy that you've configured on the FortiGate?
There's a known issue with 7.0.7 macOS forticlient 805201, it is fixed in 7.2.0 and laterhttps://docs.fortinet.com/document/forticlient/7.0.7/macos-release-notes/124818/known-issues
Let me know which forticlient version you're using.
I'm using 7.2.1 forticlient ZTNA and EMS also
The configuratons on EMS
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.