Description This article describes best practices for hardening the
FortiAuthenticator. Scope FortiAuthenticator all versions. Solution
General considerations: FortiAuthenticator can act as a server for many
protocols like RADIUS and SAML primarily, ...
Description This article describes digital certificates and explains the
use and validation of them. Certificates come with the use of the Secure
Sockets Layer (SSL) or its successor, Transport Layer Security (TLS,
latest version 1.3). Certificates a...
Description The LCD shows the error 'SWC5008 Critical'. SWC5007 might
also be displayed. According to this forum thread of Dell, this is
related to a communication issue with the left front Panel, either by
physical connectivity problems, so check th...
DescriptionThis article describes how to configure FortiNAC as a RADIUS
proxy.This can be useful in case of implementing wired or wireless
802.1x authentication.Related
link:https://docs.fortinet.com/document/fortinac/8.6.0/administration-guide/21455...
Description This article describes how to configure FortiNAC and
FortiGate to poll the sessions to FortiNAC.Related
link:https://docs.fortinet.com/document/fortinac/8.6.0/administration-guide/473911/firewall-session-polling
Normal 0 false false false...
Agreed, the OpenSSL output header on the exact chain received may be
important. Staying with the given example, google 0 s:CN =
www.google.com i:C = US, O = Google Trust Services LLC, CN = GTS CA 1C3
a:PKEY: id-ecPublicKey, 256 (bit); sigalg: RSA-SHA...
Hi Heisenbug, try from all three clients: openssl s_client -connect
www.fortinet.com:443 and see the certificate chain output. Chances are
that your server is not sending the complete chain (that is server+all
intermediates), and the client fails com...
Hi chiss, it will be difficult for me to answer, someone with Apple or
more Avahi knowledge will certainly help. I can only make a guess on how
Avahi works as being a server that is auto-discovered, requested and
hands out the info. If there is no Av...
Hi, guessing this is some device, laptop or some smaller device, then
try to do a packet capture on FortiGate. If the device is downloading,
there should be a bunch of packets going forth and back. diag sniffer
packet any 'port 69' 4 0 a will give yo...
Hi merica, for the FortiGate there is no difference of the certificate
being on a smart card or not. The smart card contains minimum the
private key of a certificate. The private key is used to identify the
holder of the certificate since only the ho...