Re: FortiGate TLSv1.3 upgrade

kumarh · 11-14-2025

Description This article describes a situation where the Security Fabric displays a Disconnected status between a root FortiGate and a child FortiGate when the serial number of a secondary High Availability unit is used for authorization. It explains...

kumarh · 10-28-2025

Description This article describes why FortiGate may use the default Fortinet_Factory certificate for SAML authentication even when a custom/wildcard certificate is defined, and how to fix it. Scope FortiGate. Solution Even when a wildcard certificat...

kumarh · 04-22-2025

Description This article discusses an issue where Dropbox fails to load properly (e.g., broken UI or missing elements) when the File Sharing category is blocked via Web Filter. This behavior occurs despite allowing Dropbox-specific domains using wild...

kumarh · 04-20-2025

Description This article describes a scenario where an Identity and Access Management (IAM) user in FortiCloud is able to view support tickets in the FortiCare Legacy portal but is unable to download associated files. This issue occurs due to limitat...

kumarh · 03-21-2025

Description This article describes how to configure FortiGate to allow all users to access Microsoft Azure services while restricting access to all other internet traffic. Scope FortiGate. Solution The configuration consists of three key firewall pol...

kumarh · 11-02-2024

Could you please share the forward traffic and debugs logs. You can run following command on Fortigate: diag debug flow filter addr X.X.X.X Y.Y.Y.Y and diag debug flow show function enablediag debug console timestamp enablediag debug flow show iprope...

kumarh · 10-25-2024

Hello, The recent post in October likely includes updates and additional information on previously disclosed vulnerabilities.

kumarh · 10-24-2024

Hello, FortiGate does not have a built-in feature that provides CLI output of every change like Cisco ASA does with its "commit" commands. However, you can enable admin activity logging to capture configuration changes in FortiGate’s logs. This will ...

kumarh · 10-21-2024

Hello, Kindly check and edit the computer registry to enable TLS 1.3:Go to \HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols If 'TLS 1.3' is not displaying as a child path under 'Protocols', create it. 'Right-c...

kumarh · 10-05-2024

Did you try reinstalling FortiClient? Also, could you share the FortiClient debug logs?

User Statistics

User Activity

Technical Tip: Security Fabric shows 'Disconnected' status when using secondary FortiGate serial number in HA environment

Troubleshooting Tip: SAML Authentication Using Custom/Wildcard Certificate

Troubleshooting Tip: Unable to access Dropbox while blocking File Sharing category

Troubleshooting Tip: IAM user unable to download files in FortiCare Legacy

Technical Tip: How to allow all users to access Azure while blocking all other internet traffic

Re: Different VLAN unable to SCAN to PC using SMB

Re: PSIRT Advisories

Re: Personal logging of FortiGate Changes