Re: FortiNAC deployment

AEK · 12-16-2025

HI EMS adminsI have an EMS installation (VM deployment) initially was at 7.4.3.When I updated it to EMS 7.4.4 I was able to create FortiClient 7.4.4 package installer.Then when I updated it from EMS 7.4.4 to EMS 7.4.5 it doesn't propose to create For...

AEK · 12-15-2025

Hi EMS admins When I update from EMS 7.4.4 to EMS 7.4.5 I have the following error.Upgrade EMS: Err:1 http://apt.postgresql.org/pub/repos/apt noble-pgdg InReleaseUpgrade EMS: The following signatures couldn't be verified because the public key is not...

AEK · 12-10-2025

Hi EMS adminsOn EMS 7.4.3 I was able to configure NTP via OS config files (chrony).But on 7.4.4 there is no access to sh/bash and I can't find anywhere some command to set it up with emscli.In emscli cmd ref I just found this command but nothing said...

AEK · 12-03-2025

HI EMS adminsBoth EMS and FCT are 7.4.4.On Forticlient, ZTNA Destinations tab, I noticed there is a button to disable/enable ZTNA.I couldn't find a way to remove this button. I thought this should be doable from EMS on the ZTNA profile but didn't fin...

AEK · 12-03-2025

Hi EMS adminsFortiEMS 7.4.4, FortiOS 7.4.8.Knowing that, starting from FortiOS 7.4.x, ZTNA gateway info and 2TNA apps are imported by EMS from FGT automatically.The issue comes when my FGT is behind NAT, so my FGT WAN interface has a private IP.So wh...

AEK · 12-24-2025

It means you shouldn't proxy the MAB requests, but treat them locally.

AEK · 12-24-2025

Ha RabebIf I remember well I was used to configure on FNAC both RADIUS proxy and local RADIUS at the same time. Only thing needed is to change the listening port of one of them, e.g.: use legacy port 1645 for local RADIUS.

AEK · 12-24-2025

Create a new certificate signed with the same CA and install it with its private key on a non-critical equipment, then try use it and see if it has any impact.It shouldn't have any impact but testing like suggested above is safer before deploying on ...

AEK · 12-24-2025

You might be looking for this:https://docs.fortinet.com/document/fortigate/7.6.5/administration-guide/336471/allow-creation-of-isdb-objects-with-regional-information

AEK · 12-24-2025

Hi SimoThis certificate is self signed, so it is already not trusted by any equipment, so I guess you are forcing all your equipment to trust it.You should create your own CA (if not already done) that will sign all you certificates.Regarding your qu...

User Statistics

User Activity

EMS 7.4.5 doesn't download FCT 7.4.5

EMS update error

Configure NTP on FortiClient EMS 7.4.4

Enable/disable ZTNA destinations

Auto-imported ZTNA gateway IP

Re: How to handle MAB locally in FortiNAC ?

Re: How to handle MAB locally in FortiNAC ?

Re: Fortiauthenticator Default-Server-Certificate expiration

Re: Internet Service combined with Geo-Blocking

Re: Fortiauthenticator Default-Server-Certificate expiration

Re: FortiNAC deployment

Re: domain whitelist

Re: FSSO - Authorization issue

Re: FortiGate does not send Two-Factor activation ...

FortiPAM Web launcher from WAN

Re: FortiClient EMS Cloud 7.4.4 – Security Posture...

Re: FortiEMS HA configure

Re: FortiEMS HA configure

Re: lacp on 148poe configuration with proxmox

Re: FortiGate 901G HA Cluster with Cisco Switch St...

Super User

User Statistics

User Activity

You are leaving our website