Technical Tip: FortiGate IPSec Dial-up IKEv2 SAML-...

akanibek · 12-13-2024

Description This article describes a solution for an issue where a host is profiled with an improper device type. Scope FortiNAC 9.4.x. FortiNAC-F all branches. Solution There could be cases when a host is registered using a Persistent Agent method, ...

akanibek · 12-11-2024

Description This article proposes a troubleshooting of missing logon events on an FSSO Collector Agent (FSSO CA) from a TS-Agent, or communication between them. Scope FSSO Collector Agent, FSSO TS-Agent. Solution All outputs could be attached to a TA...

akanibek · 11-29-2024

Description This article describes how to configure an IPSec IKEv2 SAML based authentication, where there is a FortiAuthenticator acting as an IdP. The article more describes the FortiGate settings, rather than the FortiAuthenticator. Scope FortiAuth...

akanibek · 11-22-2024

Description This article describes why, and how FortiGate creates a 'guest' user, a member of 'SSO_Guest_Users'. Scope FortiGate v7.0.x, and all other newer branches. Solution FortiGate populates, and generates a 'guest' user (member of SSO_Guest_Use...

akanibek · 09-27-2024

Description This article provides the solution when a profiled (Sponsor, System Administrator, Help Desk) remote LDAP user on the FortiNAC-F cannot log in to the GUI. Scope FortiNAC v9.4.X, FortiNAC -F v7.2, FortiNAC -F v7.4. Solution To address this...

akanibek · 05-05-2024

I would suggest considering placing your FGT before Mikrotik, and adjust your firewall policies on FGT. Then, send all traffic to Mikrotik which could act as default route to your FGT. If you have several segments, and all routes are in the Mikrotik,...

akanibek · 05-05-2024

Dear team, before purchasing, or getting a device from second hand, please ensure that the legacy owner has active email in the support portal, and can transfer his device to you. Meanwhile, be informed from Local Sales Representatives, if you purcha...

akanibek · 05-05-2024

try to sign in to the portal below, where you can find docs related REST API: https://fndn.fortinet.net/

akanibek · 04-26-2024

Have a look also to this documentation, step #2. It should be possible to perform without EMS server as @ozkanaltas said: https://docs.fortinet.com/document/forticlient/7.2.4/administration-guide/445907/configuring-autoconnect-with-username-and-passw...

akanibek · 04-26-2024

Could you make a packet capture with some debugs on FGT enabled, and compare outputs. Which device does terminate connection? Maybe you could see some errors from debugs: 1. packet capture between FGT and DC. 2. debugs: diag de reset diag de app fnba...

User Statistics

User Activity

Technical Tip: FortiNAC - Hosts are profiled with an improper Device Type

Technical Tip: FSSO TS-Agent troubleshooting steps

Technical Tip: FortiGate IPSec Dial-up IKEv2 SAML-based authentication with FortiAuthenticator as IdP

Technical Tip: FortiGate - Reason of populating 'guest' FSSO user

Technical Tip: Any profiled remote LDAP user account can not login to the GUI of FNAC-F

Re: setup FortiGate Firewall with Mikrotik Router.

Re: If I buy and second hand fortigate,how to buy a license

Re: need fortiweb api reference for versions 7.0 and 7.2

Re: FortiClient VPN - program does not remember the login and password.

Re: LDAPS issue, 'Can't contact LDAP server'

Technical Tip: FortiGate IPSec Dial-up IKEv2 SAML-...

Re: LDAPS issue, 'Can't contact LDAP server'

Re: Translate Replacement message

Technical Tip: Any profiled remote LDAP user accou...

Re: FortiClient VPN - program does not remember th...

Re: Is there an api where I can collect data from ...

Re: FG 60E Firmware Update Issue

Re: Setup Forticlient as dialup Client

Re: FortiAuthenticator as a Radius Server

Re: Unauthenticated user

KCS