I would like to be able to monitor the amount of licenses that are being
used by the FSSO. I can see it on the dashboard, but I would like to
have one of my network monitoring tools create a graph for me. I have
done an SNMP walk and I can't find any...
I would like to have a different policy for IPSec clients versus
AnyConnect SSLVPN clients. Cisco has a VSA for this (see here) but I'm
having trouble figuring out how to bring that into the
FortiAuthenticator. I go to Authentication -> RADIUS Servic...
We are wanting to add about 75 devices for RADIUS authentication to the
FortiAuthenticator. I want to use password-only authentication, use a
particular realm, and apply a group filter to that realm. I don't want
to have to do those steps for each de...
I notice that when the FortiMail sends outbound mail, it's using the RC4
cipher: it looks like (version=TLSv1.2 cipher=RC4-SHA bits=128/128) when
I view headers for a message sent from the FortiMail. We're using
version 5.2. I'm sure it can be set to...
Greetings. I am fairly new to Fortigate, but I have an extensive Cisco
background, so hopefully someone can help me with some crossover
translation. I am trying to figure out if it' s even possible on a
Fortigate to hide certain IP ranges behind a pa...
All my clients are added. Here's what I did:[ol]Created a CSV with all
the names and IP addressesManually modified each Authentication Method,
Realm, Local User Override, and Group filter for each one (no
fun)[/ol]After I finished, I noticed two thin...
I give up. Continuing in this particular thread will accomplish nothing,
so I'll go through our Fortinet rep and perhaps they can do one or more
of the following to address the situation...[ul]Build a more complete
CSV solution,add subnet range suppo...
What do you mean, "script that"? As I stated in my OP and jimsokol
reiterated, the ONLY FIELDS that the CSV accepts are name, IP/host, and
optionally, the secret. If you don't know or you're just making wild
guesses, please don't keep commenting. Tha...
As I said, that is enabled. However, it refuses to send to Gmail with
anything besides RC4, but I sent it to another mailbox I have that I
know also accepts TLS messages and this was the header (IPs and
hostnames are changed to protect the innocent):...
Yes, I'm aware of negotiating. I'm checking the headers in my Gmail
account which show the following:Received: from somewhere.example.com
(somewhere.example.com [1.1.1.1]) by mx.google.com with ESMTPS id
f192si290559iof.16.2015.04.29.14.58.53 for
(v...