Hi everyone! I do have HQ, and 10 more branches. Each branch has direct
internet. So I need to do a deep inspection at each site. I was using
the normal way. Generate a CSR from each Firewall. Sign it by my Local
CA as a subordinate. Then import it t...
Hi, I would like to know the steps to configure ZTNA with 3party vendor
for MFA. Is that supported? Or is it mandatory to be with
FortiAuthenticator only? Pls any guidness
Hi, I have new deployment project for ZNTA. We have a Local CA. we have
generated a CSR from FortiGate and signed it by a local CA to be
imported in FortiGate. and for EMS I would like to know what should do
for the certificate, as there is no CSR op...
Hi, I do have a new deployment for the EMS 7.4.4 server for the ZTNA
project. I do follow the guide about how to change the default settings,
such as DNS and IP. It shows "$ sudo nano /etc/netplan/01-netcfg.yaml"
to modify the initial setup. But when...
Hi, I have FortiGate connected to Cisco switches (core + access), which
is connected to 7 FortiAPs. I want to create multiple SSIDs (VLAN 10 and
VLAN 20). Currently, I have created two VLANs under my LAN physical
interface on my FortiGate, and two SS...
Thanks for your reply. So, If I have Local CA, I have to generate the
Root Cert with Private key to EMS. Just a note, is it mandatory to make
this step before integrating with EMS with FortiGate? As i tried to do
that, but got an error on FortiGate t...
thanks for your replay. I saw the mentioned post but still not able to
understand the different of configuration needed on cisco switch in both
options?! should i create vlans and enable trunk port with tunnel mode?
what config diff
Thanks for your reply. Yes, it's the same as the mentioned pic. I'm able
to use the signed cert in my setting for HTTPS browser. But still I'm
not able to use it in the SSL security profile. I thought in the new
version, there is a different way or I...
Thanks for your reply. This was my concern. regarding to my VPN,
actually I don't need VPN redundant. only I need to connect some
branches "spokes" to my HQ "hub". I was using dialup VPN not ADVPN as no
need for spokes to have a direct connection to ...
I appreciate your reply. It's clear, thanks. But still, I'm not sure
about the VPN point. Does configuring the VPN as a member under SD-WAN,
or by the normal way from VPN tunnel make any difference?
