Description This article describes how to configure GUI access of
FortiGate with remote user group using FortiAuthenticator as the radius
server and allowing access with and without 2FA when accessing inside
and outside the network for the same user....
Description This article describes how to configure MAC based captive
portal authentication with Cisco ISE on FortiGate. It provides a
step-by-step guide on setting up the external captive portal
authentication with Cisco ISE and troubleshooting comm...
Description This article describes the Captive portal option not
available when editing the default SSID in the lower-end model such as
FortiGate/FortiWiFi-61F/40F. Scope FortiGate FortiWiFi Series. Solution
When editing the default SSID and configur...
Description This article describes how to activate FortiToken Mobile in
an Air-gap network. Scope FortiAuthenticator v6.6.1 onward. Solution To
activate the FortiToken Mobile license, it requires a temporary online
connection to https://fortitokenmob...
Description This article describes how to enable 'httpmethod' and
'referrer url' parameters in the HTTP transaction logs for FortiAnalyzer
or syslog or FortiSIEM Scope ForitProxy. Solution The default HTTP
transaction logs in Fortiproxy do not includ...
Hi, Normally, if the Fortiap receives inadequate power, the SSID may not
broadcast. Kindly perform the following POE debug commands on the
FortiAP. cw_diag powercw_diag debug poe 5cw_debug on After collecting
the logs, turn off the debug as below. cw...
Hi, "User requested termination of service" - This is typically observed
when there is a problem on the client side. The reason could be
anything, including an ISP issue. Kindly check with different ISP
connection,if the issue happening to specific d...
Hi, If you upgrade directly from 7.4.7 to 7.6.2, you can revert to the
previous firmware and configuration by booting FortiGate with the
secondary partition by following the instructions in the given article
https://community.fortinet.com/t5/FortiGat...
Hi, If there is a policy without authentication, the firewall will first
select the policy without authentication configured to allow the
traffic, though the policy with authentication is on top.Kindly refer
the below document.
https://community.fort...
Hi By default, the FortiGate caches the user/IP correlation with FSSO
for 8 hours. This is managed by the dead entry timer in collector agent
and similarly the login expiry time under Fortinet SSO Methods >
Fortigate settings
https://docs.fortinet.co...
