Technical Tip: SSL/TLS and the use of Digital Cert...

Markus_M · 11-04-2024

Description This article describes an example use case for certmonger and the FortiAuthenticator as SCEP server. Note that certmonger is a third party tool and not endorsed by Fortinet. Its documentation can be found here:https://www.freeipa.org/page...

Markus_M · 09-05-2024

Description This article describes the general setup on an SMS gateway. It links to a few more specific setups as well. It intends to expand the documentation on the administration guide: SMS Gateway documentation Note that this does not include the ...

Markus_M · 09-21-2023

Description This article describes best practices for hardening environments with the FortiAuthenticator. It may in parts be true for other installations. Scope FortiAuthenticator all versions. FortiGate configuration is referred to in parts. Solutio...

Markus_M · 08-01-2022

Description This article describes digital certificates and explains the use and validation of them. Certificates come with the use of the Secure Sockets Layer (SSL) or its successor, Transport Layer Security (TLS, latest version 1.3). Certificates a...

Markus_M · 03-02-2022

Description The LCD shows the error 'SWC5008 Critical'. SWC5007 might also be displayed. According to this forum thread of Dell, this is related to a communication issue with the left front Panel, either by physical connectivity problems, so check th...

Markus_M · 09-04-2024

Hi Lelle68, freeradius may not be covered well here, simply because we don't do much with direct configuration. I suggest you check the freeradius forums/documentation directly: https://www.freeradius.org/documentation/freeradius-server/4.0.0/tutoria...

Markus_M · 08-28-2024

May depend on the FortiClient version as well. 7.4.0+ should not do that, older 7.0 should not do that either. 7.2 may do that on intention to fix a reported problem.https://docs.fortinet.com/document/forticlient/7.2.2/windows-release-notes/22791 862...

Markus_M · 08-23-2024

Hi, downgrade is not recommended on FortiGate. Due to migration of settings forward in the upgrade, the migration backwards may not work as the old firmware file may not be aware of the newer settings. As such, downgrade requires restoring from a bac...

Markus_M · 08-23-2024

Hi, it can be downloaded at the same location as already posted 10 years before. We have it now also documented: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Downloading-FSSO-agent-software/ta-p/191684 Best regards, Markus

Markus_M · 08-21-2024

Try upgrading to the 7.4.0. It changes the detection of logoff and lock and might work for this case.

User Statistics

User Activity

Technical Tip: Example of use of certmonger and FortiAuthenticator as SCEP server.

Technical Tip: General SMS Gateway configuration for OTP or second factor authentication

Technical Tip: Best practices on hardening FortiAuthenticator environments

Technical Tip: SSL/TLS and the use of Digital Certificates

FortiNAC iDRAC update in case of error code "SWC5008 Critical"

Re: Forinet, Freeradius and certificate autentication

Re: When I lock Windows, the connection is interrupted.

Re: Users & Devices error after downgrade (downgrade error)

Re: Download FSSO agent?

Re: Forticlient 7.2.4 breaks authenticated active connections during ctrl-alt-del

Technical Tip: SSL/TLS and the use of Digital Cert...

Technical Tip: Best practices on hardening FortiAu...

Technical Tip: Configuring DPD (dead peer detectio...

Technical Tip: General SMS Gateway configuration f...

Re: Fortigate API - bulk remove addresses

Re: Failed to send notification to user [username]...

Re: Blocked HTTPS Traffic

Re: Deep inspection

Re: RSSO with NPS and 802.1x

Re: Wifi user with limited access

KCS