Technical Tip: Extracting SSL Server certificate f...

kwcheng__FTNT · 07-07-2025

Description This article describes the typical circumstances behind the 'Logs FortiToken seed retrieval from FortiGuard server'. Scope FortiAuthenticator. Solution Event ID 10101 refers to an event log entry indicating that the FortiAuthenticator is ...

kwcheng__FTNT · 06-30-2025

Description This article describes how to enforce HSTS on FortiAuthenticator. Scope FortiAuthenticator. Solution RFC 6797 (HSTS) is not a vulnerability, but a mitigation instead. HSTS was introduced specifically to prevent SSL stripping and Man-in-th...

kwcheng__FTNT · 06-03-2025

Description This article describes the typical circumstances behind the 'Entry Deletion'. Scope FortiAuthenticator. Solution Event ID 10003 refers to a log deletion event that was performed through the Graphical User Interface (GUI). This indicates t...

kwcheng__FTNT · 06-03-2025

Description This article describes the typical circumstances behind the 'Entry Change'. Scope FortiAuthenticator. Solution Event ID 10002 refers to a log entry change event that was performed through the Graphical User Interface (GUI). This indicates...

kwcheng__FTNT · 05-14-2025

Description This article describes the typical circumstances behind the 'Entry Addition'. Scope FortiAuthenticator. Solution Event ID 10001 refers to a log entry addition event that was performed through the Graphical User Interface (GUI). This indic...

kwcheng__FTNT · 02-16-2025

Active-passive cluster is an L2 connection and it is only for local network. It will not go through the firewall as L3 connection. If you have another "passive" cluster member across the network located on another place/location, it will be "global l...

kwcheng__FTNT · 02-03-2025

This could be a bug issue, you can initiate a TAC ticket

kwcheng__FTNT · 02-03-2025

If you are using Full SSL inspection, you might want to check the exclusion list under the SSL profile. Security scanning will be excluded when it is fallen under "Exempt from SSL Inspection" configuration.

kwcheng__FTNT · 02-02-2025

From what I understood here there are no "free trial" version kind of license. To be specific, "trial license" basically is the same as normal license with shorter expiry date. Hence, it should function as the same as a purchased license if it is sti...

kwcheng__FTNT · 02-02-2025

Since you are able to reach to the FortiGate GUI interface and non other device than that which is within this subnet, why not SNAT your source IP to the FortiGate IP (the one which is the same subnet with other device) and check your connection agai...

User Statistics

User Activity

Technical Tip: Understanding the log message 'Logs FortiToken seed retrieval from FortiGuard server'

Technical Tip: Enforcing RFC 6797 'HTTP Strict Transport Security (HSTS)'

Technical Tip: Understanding the log message 'Entry Deletion'

Technical Tip: Understanding the log message 'Entry Change'

Technical Tip: Understanding the log message 'Entry Addition'

Re: FortiADC HA Network Link

Re: URL Filter not blocking sites 60F

Re: URL Filter not blocking sites 60F

Re: Can fortigate vm free trial manage and authorize fortiAP & fortiswitch?

Re: routing between two subnets/ unable to connect to devices( printer/NAS)

Technical Tip: Extracting SSL Server certificate f...

Re: routing between two subnets/ unable to connect...

Re: FortiADC HA Network Link

Technical Tip: Understanding why Radius password r...

Technical Tip: Understanding the log message 'Inte...

Re: Need guidance on how to create dedicated HA ma...

KCS

Fortinet Training Institute

User Statistics

User Activity

You are leaving our website