Hello team,What is the benefit of the active probing feature while
Fortigae can just wait for the server certificate in response to the
original client hello.What is the need of actively probe the certificate
in a new connection originating from Fort...
Hello Folks, windows environment seem to be somehow complex to me when
dealing with ZTNA, especially when knowing that some transactions need
line-of-side connections between clients and the DC, many ports being
used on both TCP and UDP. In my scenar...
Hello Team,Referring to:Introduce simplified ZTNA rules within firewall
policies | FortiGate / FortiOS 7.4.0 | Fortinet Document Library I found
some points that I need to digest regarding the two modes (simple,full)
of ZTNA policies: 1- what cases e...
Hello experts, I want to implement SAML authentication for some web
application.The trick is that, I need the on-prem users, who already
signed in to their domain accounts to be given the assertion directly
without being re-directed to a login form. ...
Hello team, I could see that we can enable video codecs on a SIP
profiles to enable the video call feature on FortiFone soft client.My
question is, do this also apply to third party SIP phone that support
the same video codecs supported by FortiVoice...
I have thought awhile about it.I expect that this is due the fact that I
recent TLS versions the server certificate is sent encrypted. Hence in
flow based certificate inspection policies Fortigate should not have
visibility on the certificate. Thus, ...
Make sure secret configured on FAC matches the one confiured on
Fortigate under : config accounting server also if you FortiOS is higher
than 7.2.9 or 7.4.4 or 7.6.0then check the below
update:https://community.fortinet.com/t5/FortiGate/Troubleshooti...
By Default, FortiAuthenticator listen on port 1646 for RADIUS accounting
messages. (not 1813).Packets with destination ports 1813 are handled by
a different function in FortiAuthenticator (FSSO not accounting_
