Description This article discusses the concept of a 'break glass'
administrator account, as well as some reasons for why admins should
configure one on the FortiGate. This article also discusses some general
risks to keep in mind when using more adva...
Description This article describes a known behavior where the FortiGate
SSL VPN will set/grant HTTP cookies that have the 'expires' attribute
applied as part of the login/logout process. Administrators may see this
flagged while performing security s...
Description This article discusses the tamper-evident seals required on
the FortiGate as part of FIPS 140-2 and 140-3 Security Level 2
requirements. Scope FortiGate, FIPS. Solution As per the FIPS
140-2/140-3 'Physical Security' requirements section,...
Description This article describes a known issue that occurs with
hardware-offloading when IPsec VPN tunnels are terminated/listening on
NPU VDOM links (also known as npu_vlinks). This issue will also occur if
the IPsec tunnel is listening on a VLAN ...
Description This article describes an expected behavior with the VMware
ESXi External Fabric Connector on the FortiGate where it retrieves some
(but not all) networks from VMware vSphere due to naming restrictions.
Scope FortiGate. Solution As a prim...
Sorry to necropost, but just to let you know: we've taken your feedback
and had our documentation team update the FortiWiFi/FortiAP
Configuration Guide to better explain the extra steps involved for
LAN-only FortiAPs vs. WAN-LAN equipped FortiAPs.As ...
Piggybacking on what @cyberadius suggested above, we have the following
Community KB articles that cover similar info (I'll leave them here for
future reference): Technical Tip: How to prevent the SSL VPN web login
portal from displaying when SSL VPN...
Hi @SajjadAli-1986, Just to let you know, this is the Article Ideas
Submission queue, which is used to submit new KB article ideas. For
technical assistance, please either post to the Fortinet Support Forum
or open a ticket with Fortinet TAC Support....
Hi Faiza_Emam_Delhi, can you clarify where (FortiGate, FortiSwitch
directly, FortiManager, etc.) and on what firmware you were able to
perform these steps? I checked on FortiOS 6.4, 7.0, 7.2, and 7.4, and
none of them have the capability that you are...
I recommend checking out these Community KB articles for SSL-VPN and
IPsec:https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enabling-split-tunnel-feature-for-SSL-VPN/ta-p/198108https://community.fortinet.com/t5/FortiGate/Technical-Tip-Enable...