Friends, Has anyone found problems with either Windows7 (64 bit) and/or
Lenovo Thinkpad and VPNs in general. I have both IPSec with forticlient
and SSL tunnel mode configured. In both these cases it will not work
correctly. SSL VPN just hangs at (90)...
Hi All, V4.0.0 and V4.0.1, Foprtigate 60B Wifi, windows live messenger
on XP Problem: Cannot get MSN to pass through FG when appropriate
application control list enabled. Reason to use app control: to view all
applications running through the FG, so ...
Hi All, I have an intersting case where I need to set a very low
authentication timeout and use a HTTP keepalive page to keep the
sessions authenticated. I notice on the FG that under replacement
messages there is a keepalive page that seems to be co...
Hi All, I just tried a firmware upgrade and it went nasty. I had backed
everything up before I started, so was able to go back fine however.....
I cannot get into the GUI through either HTTP or HTTPS. If I factory
reset then it is fine, but as soon a...
If I understand correctly then you have created a group of users on the
FortiAuthenticator that are not domain users. You need to create an FSSO
user group on the FAC with the same name as the user group you created.
This group is then pushed into FS...
I have never seen this, did you do an import of anything from another
system? This looks like something in the config has some characters that
the Fortigate does not understand. From CLI try running "diag debug
config-error-log read" and see if this ...
Fillip, With so many DCs, do you think your company would pay for a
FortiAuthenticator rather than using the free software version.
FortiAuthenticator also comes as a VMWare image.5
Have you tried changing the auth-timeout-type to hard-timeout under
user=>settings. I know that this will kill all open sessions on a
timeout. It likely could do the same thing on a logout, but would need
testing.
Hi Kevin, You should be able to enable SNMP administrative access to the
automatically created VPN interface found under system interface and the
physical interface that the VPN is listening on. You will likely need to
give this interface an IP addre...