Hello, I have configured our Fortigate to authenticate our ssl-vpn users
with Azure AD. I've configured the enterprise app within Azure AD and
configured the SAML user within the Fortigate. I have no issues when I
login the web-mode. However when I t...
Hello, I have configured our Fortigate to authenticate our ssl-vpn users
with Azure AD. I've configured the enterprise app within Azure AD and
configured the SAML user within the Fortigate. I have no issues when I
login the web-mode. However when I t...
Hi, I'm trying to create a Virtual Server within Fortimanager to deploy
to 2 Fortigate clusters.But I must be overlooking something because I
can't find the options. On a side note, I use central NAT on the
Fortigates. I first tried creating a VIP wi...
Hello, I've got 2 Fortigate 600E clusters on which my students will go
to the internet. The students will be authenticated by a Windows NPS
server. In the connection request policy I've created a "Radius server
group" to forward the accounting packag...
Hello, For one of our customers we want to seperate Skype For
Business(SFB) VOICE and VIDEO traffic from the normal traffic. This SFB
Voice and Video traffic needs to traverse to the internet from a special
internet connection we configured on one of...
I think assume the company regulation dictates a form of safe
authentication with SSO capabilities. Maybe in the time it was written
ADFS was the best option. But time changes so if you can indicate that
you can full fill the same functional requirem...
Hi, change the radius time out:
https://kb.fortinet.com/kb/documentLink.do?externalID=FD48279I wouldn't
put to much effort in adfs configuration. Or do you have an completly
on-prem environment? I see a lot of organizations struggling with adfs
in co...
cnguyen@mygenesisbank.com wrote:Hi AvK, I have the same setup with Azure
AD for SAML. Everything is working correctly with the exception of the
first connection of the day where it stucks at 98%. Have you see this
issue before? Fortinet Support asked...
NeilG wrote:WOOT!! I know what blog I will be reading (and what lab I
will be setting up for testing) next week!!! (Last time I looked at this
it seemed to require LDAP which only was available through domain
services or assumed a local domain contro...
You are correct. Just Azure-AD no other. Azure-ad is an Identity
provider. Just make sure your fortigate has his firmware above 6.4.X.
I've written a blog post about it: Ivo-Security - Fortigate and Azure
AD: Safe remote access (ivo-security.blog) I'...
