Hello!
I have setup FSSO for windows active directory on my fortigate 100d and on a domain joined server.
under User & device > authentication >single sign-on i have my fortinet single sign on agent. and the status shows a green check mark. so the fortigate and the collector agent can speak to each other(if i understand this correctly)
But my user field under log & report > traffic log > forward traffic does not populate.
I check the collectoragent.log on the collector agent and i get this error:
[ 6060]
[EPPoller]Could not open the event log on:dc1.domain.local (e=1314)
But, when i check " show monitored DCS" i get an increasing amount of logon events.
How do i troubleshoot this issue?
" This solution needs to be idiot proof!"
" Why? Do you plan on hiring idiots?"