Description This article describes how to enforce a SAML session timeout
for IPsec remote access VPN users, ensuring they are required to
reauthenticate after a specified period. Scope FortiGate: FortiOS 7.4.1
and later. SAML Identity Provider (IdP):...
Description This article describes the feature on IPsec phase 2
configuration Perfect Forward Secrecy (PFS). Scope FortiGate. Solution
PFS enhances security by performing a fresh Diffie-Hellman key exchange
each time a Phase 2 Security Association (S...
Description This article describes the behavior when LDAP authentication
fails when ha-direct is enabled. Scope FortiOS v7.4.8 and earlier,
FortiOS v7.6.2 and earlier. Solution In general, the 'fnbamd' process
checks three configurations to identify ...
Description This article describes the issue when FortiGate Azure VM on
v7.4.7 and earlier, v7.6.2 and earlier versions, enters conserve mode
due to Network Virtual Appliance (NVA) health checks sent to Azure. High
memory usage is observed on the dae...
Description This article describes an issue where the Security Fabric
connection fails when FortiGate-200G/201G models on v7.4 and v7.6
firmware act as the root. Numerous 'csfd-unpriv' daemon crashes have
been observed. Scope FortiGate-200G/201G on v...