Description This article describes how to read SAML logs with the output
obtained from the following commands: diag debug application samld
-1diag debug enable Scope FortiGate. Solution This article uses SAML
login as an example. Once the user enters...
Description This article describes how to allow Gmail or Yahoo Mail
while blocking the upload of any attachments. Scope FortiGate 6.4, 7.0+.
Solution This can be achieved using the Application Control Security
Profile.Below are the signatures which c...
Description This article explains how to force sessions to keep using
the outgoing interface and gateway after a route change. The
reevaluation of a dirty session following a route change may result in a
failover to another SD-WAN member. If the SD-W...
Description This article describes an issue where FSSO CA overrides an
actual logon event with the Outlook email event when a user has Outlook
set up with two email accounts. A solution is offered. Scope FortiGate.
Solution If user 'A' logs on to the...
Description This article describes the behaviour and benefits of packet
duplication with SD-WAN Scope FortiGate. Solution Packet duplication is
an SD-WAN feature to reduce data loss over any underlay and overlay
SD-WAN. It enables the sending of dupl...
Hi, If you have disabled Split Tunneling for SSL VPN, in that case, on
the Policy which you have created for the SSL VPN users to access
Internet, you would need to call the SAML USER GROUP. This group will be
for the non gallery application which yo...
Hi Slouw, I understand that you are not able to add the WAN interface to
your SD-WAN Zone in Fortigate from GUI. Please refer to this link and
try to add it from the CLI and let us know if that
Hi Scheuri, You may refer to this link to set the action while creating
Hi, I can see it's ikeV2. Please refer to this link:
Also, the Auth Failed message is received from the other end. Please try
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.