Fortinet Community

xsilver_FTNT · 10-26-2020

DescriptionThis article describes how to run FSSO in dual (or multi) NIC environment.Quite often we see issues in FSSO caused by simultaneous use of wired and Wi-Fi connections, especially with docking stations and notebooks. Not that often in dual-N...

xsilver_FTNT · 08-05-2019

Description This article describes how FortiToken Push feature works with FortiAuthenticator and Apple/Android based devices, the configuration requirements and the workflow on FortiAuthenticator when a user authenticates.Useful links:FortiAuthentica...

xsilver_FTNT · 08-08-2018

Description This article describes how to modify the LDAP Nested group settings. In order to authenticate user via LDAP while the user is not a direct member of the group, but member of nested group, set FortiGate in the way it will be able to check ...

xsilver_FTNT · 08-12-2015

Description This Knowledge Base article gives the list of valid RADIUS VSA Dictionary (vendor-specific attributes) of Fortinet devices. Refer to the Related Articles for FortiGate Radius VSA Dictionary (vendor-specific attributes). Scope# -*- text -*...

xsilver_FTNT · 08-18-2009

DescriptionThe files attached to this article provide the Radius VSA Dictionaries for 1) FortiOS 4.0 2) FortiOS 3.0 MR7 3) NTRadPing Note: NTRadPing 1.5 refuses to start with dictionary containing types 'ether' and 'octets'. For simplicity of use, th...

xsilver_FTNT · 05-17-2022

Hi, how about to start also with WHAT error do you see?What is intermittent by your means .. once a year, month, hour ?Some details on cert like used ciphers and also if signing CA cert was imported to FortiGate.

xsilver_FTNT · 05-17-2022

Hi, log should show you which firewall policy and rules blocked it. So you can make temporary policy ABOVE that blocking one (R-click -> Insert empty - Above). And that new one might have their source IPs and accept their connections. But shouldn't t...

xsilver_FTNT · 05-17-2022

Thank you for your info. Working on it.

xsilver_FTNT · 05-17-2022

great to hear that it's fixed now.

xsilver_FTNT · 05-17-2022

Hi, so I guess you have RSSO Source like this on your FAC Listening to RADIUS Accounting messages for user names and source IP addresses, but "SSO user type" is "Remote users" pointing to some LDAP. Therefore what's the group attribute in that Authen...

Fortinet Community

User Statistics

User Activity

Technical Tip: FSSO Dual NIC

Technical Tip: FortiToken Push on FortiAuthenticator - operation flow and details

Technical Tip: LDAP Nested Group settings and changes in FortiOS 5.6, 6.0 and 6.2

Technical Tip: Fortinet RADIUS attribute

Technical Tip: FortiGate Radius VSA Dictionary (vendor-specific attributes)

Re: Certificate errors after applying 6.4.9

Re: Whitelist Pentester IP Addresses

Re: Firmware RSS feeds not working

Re: FortiOS Explicit Proxy rule based on client(!) HTTP header

Re: FSSO Sessions not showing group

Re: Fortiauthenticator 6.01

Re: NSE8 - Certificate validity "extension"

Re: SAML with anything other than Windows and Azur...

Re: Fortiauthenticator COA

Re: Problem import user LDAP UNIX (OpenLDAP) Forti...

Re: How Do You Change The Login Password For This ...

Re: FortiGate SSL VPN Login page language

Re: Hard Token SN is invalid

Re: FortiAutenticator sorting columns

Re: FSSO Agent with collector agent

News & Articles

Security Research

Company

Contact Us