Just wondering if anyone have tried to configure the ssl with this or if it's possible to do..
SSL vpn with requirement of client cert. to verify that the workstation is a legitimate / company workstation
authenticate via username and password
then user forti token.
The goal is for non domain/ company laptop to be unable to login into ssl vpn. while still using userpass and forti token.
Any input would be greatly appreciated. Thank you in advance
The short answer is yes, but it's a bit complicated. You have to merge this two methods:
https://docs.fortinet.com/document/fortigate/7.2.3/administration-guide/266506/ssl-vpn-with-certific...
and this
https://docs.fortinet.com/document/fortigate/7.2.3/administration-guide/183204/ssl-vpn-with-fortitok...
It is known as 3FA
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2023 Fortinet, Inc. All Rights Reserved.