We have a number of FGT devices running on 7.0.14 and all part of
FortiManager, with the basic configurations being pretty much the same.
One of those configurations is to setup AD users as admins based on
LDAP. This process works great for all but 1...
Found the issue, apparently I didn't stare and compare well enough. It
was in the administrators section, the failing one had "Match a user on
a remote server group" selected instead of "Match all users in a remote
server group" Swapped that and it's...
Some notable logs:From the device that fails: logincheck_handler[529] --
login_attempt (method=5, vdom='root',
name='useradmin',admin_name='useradmin', auth_svr='')From the device
that is successful: logincheck_handler[529] -- login_attempt (method=5...
1 - Checked using "stare and compare" with another device, also removed
and re-established the correct group on the device.2 - Users are mapped
properly, they work on any of the other FGT devices we have (FMG
configuration).3 - LDAP server doesn't sh...
No, Ubiquiti switches and access points. The VLANs all worked before I
put the Fortigate in (was running a Sophos UTM) and with DHCP relay
enabled on that device.
I'm having a similar issue with DHCP relay and 7.4.3 (was .2, upgraded
and issue still there). I'll be downgrading to 7.2.7 tonight to test and
can report back my results tomorrow when I'm in the office again.