DescriptionThis article describes how to run FSSO in dual (or multi) NIC
environment.Quite often we see issues in FSSO caused by simultaneous use
of wired and Wi-Fi connections, especially with docking stations and
notebooks. Not that often in dual-N...
Description This article describes how FortiToken Push feature works
with FortiAuthenticator and Apple/Android based devices, the
configuration requirements and the workflow on FortiAuthenticator when a
user authenticates.Useful links:FortiAuthentica...
Description This article describes how to modify the LDAP Nested group
settings. In order to authenticate user via LDAP while the user is not a
direct member of the group, but member of nested group, set FortiGate in
the way it will be able to check ...
Description This Knowledge Base article gives the list of valid RADIUS
VSA Dictionary (vendor-specific attributes) of Fortinet devices. Refer
to the Related Articles for FortiGate Radius VSA Dictionary
(vendor-specific attributes). Scope# -*- text
-*...
DescriptionThe files attached to this article provide the Radius VSA
Dictionaries for 1) FortiOS 4.0 2) FortiOS 3.0 MR7 3) NTRadPing Note:
NTRadPing 1.5 refuses to start with dictionary containing types 'ether'
and 'octets'. For simplicity of use, th...
Hi, how about to start also with WHAT error do you see?What is
intermittent by your means .. once a year, month, hour ?Some details on
cert like used ciphers and also if signing CA cert was imported to
FortiGate.
Hi, log should show you which firewall policy and rules blocked it. So
you can make temporary policy ABOVE that blocking one (R-click -> Insert
empty - Above). And that new one might have their source IPs and accept
their connections. But shouldn't t...
Hi, so I guess you have RSSO Source like this on your FAC Listening to
RADIUS Accounting messages for user names and source IP addresses, but
"SSO user type" is "Remote users" pointing to some LDAP. Therefore
what's the group attribute in that Authen...