We've recently begun using FAC in a larger way. Our deployment is
primarily Windows Event Log Polling to capture logon events, pushing
authenticated users and groups down to the Fortigates for authentication
in policy. We've had a few instances where...
I think I found some good info @afroman posted on reddit about this a
couple years ago.
https://www.reddit.com/r/fortinet/comments/3afsa0/authenticator_does_not_reflect_change_in_window/
I certainly welcome any other feedback. The biggest thing for m...
Thanks Ede - this can take care of the larger/well known instance (such
as 8.8.8.8). And, in my testing, the policy route is not needed - at
least with central nat table enabled. I have tested with and without
central nat table (we use central snat m...
If I understand what you want to do correctly, I haven't yet found a way
to configure the Fortigate to do this. It sounds like what you want to
do is match traffic that is initiated from inside your network that is
destined to any destination ip with...
Yes - I do have this working and can reference my configs to get all the
details if you are still having trouble with this.IIRC, you also need to
define authentication rules to select the auth scheme and backend domain
controller for the traffic. And...
It looks like this is possible at the CLI, at least on FortiOS 6.0.2.
You can set safe-search enable on the dnsfilter profile, but not set
youtube restricted.config dnsfilter profileedit profilenameset
safe-search enableunset youtube-restrictend Anot...
