Fortinet Community

bpozdena_FTNT · 09-29-2021

DescriptionFSSO collector agent by default tries to detect workstation IP address changes by resolving the workstation host names via DNS. The interval in which the IP address verification occurs is configured by the 'IP address change verify interva...

bpozdena_FTNT · 05-27-2021

DescriptionWhen configuring FSSO, administrators have the ability to specify which user groups will be monitored by FSSO. The Group Filter can be defined either locally on FortiGate or directly on FSSO Collector Agent. While in general the group filt...

bpozdena_FTNT · 04-12-2021

DescriptionSince the release of FortiOS 6.2, the FortiOS proxy daemon (WAD) will strip domain names from usernames when domain is specified with backslash (DOMAIN\username). This behavior allows matching of locally defined users before contacting rem...

bpozdena_FTNT · 05-15-2020

DescriptionThis article describes how to configure SSL VPN OS check for Windows 10 clients with specific Windows build number.Solution# config vpn ssl web portal edit set os-check enable set skip-check-for-unsupported-os # config os-check-list { ma...

bpozdena_FTNT · 05-08-2020

DescriptionThis article describes how to move FortiToken Mobile between VDOMs.Solution1) Ensure the FortiToken mobile to move is not assigned to any user.2) Note down the Serial Number of the FortiToken to move to different VDOM. 3 )Delete the token ...

bpozdena_FTNT · 06-10-2022

Hi chinlong,   The root VDOM cannot be deleted.    HTH, Boris

bpozdena_FTNT · 06-10-2022

Hi Victor, Yes, it is enough. If your switches are configured with vLAG, you will just configure standard LAG port on Fortigate. HTH, Boris

bpozdena_FTNT · 06-10-2022

This packet itself is not a clear indication of an issue. It just shows the client is trying to open a new TCP session and that the packet capture already contains previous session with the same port numbers. It does not indicate why was the previous...

bpozdena_FTNT · 06-09-2022

Hi owlalex, It sounds more like the TCP connection was reset. You can start by checking your Fortigate forward event logs and see if there are any obvious deny events. The next step should be performing packet captures on the LAN and WAN facing inter...

bpozdena_FTNT · 06-06-2022

Hi daywalker7695, you should provide more details about your setup and the actual issue facts. Simple diagram, error logs, etc would be helpful too. In general, the most effective way of troubleshooting packet flow related issues on Fortigate is by d...

Fortinet Community

User Statistics

User Activity

Technical Tip: Optimization of FSSO workstation IP address verification

Technical Tip: FSSO Group Filter configured on Collector Agent

Technical Tip: Domain name stripping behavior for proxy authentication

Technical Tip: How to configure FortiClient SSL VPN check for Windows version and build

Technical Tip: Moving FortiToken Mobile between VDOMs

Re: Delete root VDOM

Re: HA configuration between Fortigate A-P and upstream swithes (VLAG)

Re: Using webproxy-forward sometimes get errors "Site can't be reached. ERR_CONNECTION_CLOSED&q

Re: Using webproxy-forward sometimes get errors "Site can't be reached. ERR_CONNECTION_CLOSED&q

Re: Bridged Mikrotik is dropping by fortigate 60E

Re: External Connector FSSO Agent on Windows AD

Re: Fortigate Firewall Policy | GUI Table

Re: Upload a logo image via CLI

Re: Automation -> CLI Script: Use date as Part of ...

Re: FAC Captive Portal with http

Re: FAC Captive Portal with http

Re: External Connector FSSO Agent on Windows AD

Re: Fortigate Firewall Policy | GUI Table

Re: Upload a logo image via CLI

Re: Change LACP settings on existing link

News & Articles

Security Research

Company

Contact Us