Description This article describes how to use logging in VoIP profiles
to monitor traffic and/or troubleshoot VoIP SIP/SCCP related issues.
Scope FortiOS. Solution FortiOS does provide solid logging capabilities.
That logging needs to be set on respe...
DescriptionThis article describes how to run FSSO in dual (or multi) NIC
environment.Quite often we see issues in FSSO caused by simultaneous use
of wired and Wi-Fi connections, especially with docking stations and
notebooks. Not that often in dual-N...
Description This article describes how FortiToken Push feature works
with FortiAuthenticator and Apple/Android based devices, the
configuration requirements and the workflow on FortiAuthenticator when a
user authenticates.Useful links:FortiAuthentica...
Description This article describes how to modify the LDAP Nested group
settings. In order to authenticate user via LDAP while the user is not a
direct member of the group, but member of nested group, set FortiGate in
the way it will be able to check ...
Description This article gives the list of valid RADIUS VSA Dictionary
(vendor-specific attributes) of Fortinet devices. Refer to the Related
Articles for FortiGate Radius VSA Dictionary (vendor-specific
attributes). Scope # -*- text
-*-#############...
Somehow missed that one, so hope it will help those who would read
later. If you log into MSFT workstation in AD environment, then there is
a logon event. Which could be spotted and processed via FSSO structures
and then as user/source-IP/group-membe...
Hi, if you do not have a valid access to support.fortinet.com, then your
options are a bit limited.As you would have no access to Life Cycle base
doc https://support.fortinet.com/Information/ProductLifeCycle.aspx Which
would tell you that 6.0 was rel...
Hi, if you do run one of the affected versions, which all are more than
a year old. And if you do have user (admin) accounts able to log in
directly to FGT unit to be able to "execute" commands on unit itself.
Then I would suggest to update.Especiall...
If you see "fortigate-tech-support" or have device with logs
(type="event" subtype="system") and any of following
properties:user="Local_Process_Access"ui="Node.js" then open a technical
ticket of Fortinet's Support for further steps and checks.
Thanks crpb, but if you have large user base directly on FGT, while your
company uses AD/LDAP or any RADIUS capable IAM (Identity and Access
Management) tool. Then you are probably doing it terribly ineffectively.
And might be better to have users au...