Troubleshooting Tip: VPN SSL connected but no IP a...

jdelafuente_FTNT · 03-24-2024

Description This article describes how to require an authentication user portal using Web Filter to access Youtube. Scope FortiGate, Web Filter, Authentication, Youtube. Solution Local Category: Create a new Web Custom Category named 'youtube' and ov...

jdelafuente_FTNT · 02-11-2024

Description This article describes how to configure Web Filter authentication user for local categories overrides. Web Filter authentication is required for branch-office users to access to internal sites of a private domain. Scope FortiGate, Web Fil...

jdelafuente_FTNT · 02-11-2024

Description This article describes how to locate a full set of Windows event log polling in the FortiAuthenticator GUI. Scope FortiAuthenticator, SSO. Solution Access the FortiAuthenticator GUI and navigate to the following path: SSO -> General -> Fo...

jdelafuente_FTNT · 02-11-2024

Description This article describes how to configure user authentication for a specific FortiGuard Web Filter category. Scope FortiGate, Web filter. Solution Requirements: A valid Fortiguard Web Filter license. An authentication server: Local, LDAP, o...

jdelafuente_FTNT · 02-04-2024

Description This article describes how to allow usernames containing the special character 'dollar'. Scope FSSO, FSSO-CA, DC_Agent. Solution By default in FSSO, usernames with the special character '$' are not registered. It is necessary to create so...

jdelafuente_FTNT · 02-11-2024

Hello, check this article: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Restricting-SSL-VPN-connectivity-from-certain/ta-p/191997 Best regards. JoN

jdelafuente_FTNT · 08-02-2023

SSL Certificate for deep inspection must have CA=True, this kind of certificates isn't availables for purchasing, you need to auto-sign with MS-Windows certificate manager or OpenSSL. Check the pdf attached on this article: https://community.fortinet...

jdelafuente_FTNT · 08-02-2023

A good practice can be, configure a new IKEv2 user-based VPN, and deploy this new tunnel configuration in your EMS, once you have synced and validated all your end-points with this new configuration, you can delete old VPN.

jdelafuente_FTNT · 07-20-2023

Hello wamendoza, If remote peers have public IP; yes it is possible, but commonly ADVPN deployments are so difficult, here is some community guides for it: https://community.fortinet.com/t5/FortiGate/Technical-Tip-ADVPN-with-BGP-as-the-routing-protoc...

jdelafuente_FTNT · 07-12-2023

More here:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Details-about-quot-pass-quot-and-quot-exempt-quot/ta-p/196171

User Statistics

User Activity

Technical Tip: Web Filter authentication for Youtube access

Technical Tip: Web Filter Authentication for local categories

Technical Tip: How to see a full list of Windows event log polling

Technical Tip: Creating a Web Filter profile with user authentication

Technical Tip: FSSO usernames with dollar special character

Re: SSLVPN geo location

Re: Windows server 2019 HTTP, HTTPS fortigate SSL/TLS Certificate for deep inspection.

Re: What's the Impact of Changing IKE Versions?

Re: ADVPN to connect all my IPsec VPNs to AWS?

Re: Web filter Allow vs Exempt

Troubleshooting Tip: VPN SSL connected but no IP a...

Troubleshooting Tip: FSSO Complete troubleshooting...

Re: Fortigate F series Life Cycle

Technical Tip: FSSO choose between DC Agent mode o...

Re: SSLVPN geo location

KCS