DescriptionFSSO collector agent by default tries to detect workstation
IP address changes by resolving the workstation host names via DNS. The
interval in which the IP address verification occurs is configured by
the 'IP address change verify interva...
DescriptionWhen configuring FSSO, administrators have the ability to
specify which user groups will be monitored by FSSO. The Group Filter
can be defined either locally on FortiGate or directly on FSSO Collector
Agent. While in general the group filt...
DescriptionSince the release of FortiOS 6.2, the FortiOS proxy daemon
(WAD) will strip domain names from usernames when domain is specified
with backslash (DOMAIN\username). This behavior allows matching of
locally defined users before contacting rem...
Description This article describes how to configure SSL VPN OS check for
Windows 10 clients with specific Windows build number. Scope FortiGate
v6.2 and above. Solution # config vpn ssl web portal edit
set os-check enable set skip-check-for-unsuppor...
DescriptionThis article describes how to move FortiToken Mobile between
VDOMs.Solution1) Ensure the FortiToken mobile to move is not assigned to
any user.2) Note down the Serial Number of the FortiToken to move to
different VDOM. 3 )Delete the token ...
You can't access the captive portal manually. You'll need to be
redirected there by the Fortigate. Just access http://example.com . If
you are using the HTTPS version on port 1003, ensure the client OS can
verify the validity of all intermediate cert...
You can also keep using the same portal address everywhere, and just
resolve the FQDN into different Fortigate IP address. For instance, you
can create a recursive DNS server on each interface for the same A
record. Alternatively, the latest FortiOS ...
It seems you're mixing multiple different issues into the same
questions. It might be better to have separate threads for separate
issues. Bellow are some generic tips: If inactive users are being
de-authenticated you may need to tweak the timers. If...
The concept of filtering the FSSO groups on FAC is the same as on
Windows Collector Agent. FAC, however has two different filtering
options 'Global Pre-Filter' and custom 'FortiGate Filter'. To create
FSSO Filter for your Fortigate: FAC GUI > Fortine...
Hi Nark0t, MAC address randomization is enabled by default on most
modern mobile devices these days and in itself should not have any
effect on connecting to Wifi or accessing captive portal. You can
however try to disable source MAC address verifica...
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.