Description This article describes basic troubleshooting steps for
FortiAuthenticator's (FAC) TACACS+ service. Scope FortiAuthenticator
6.4.X, 6.5.X, 6.6.X. Solution Network issue: revise if the TACACS+
protocol is enabled for communicating between t...
Description This article describes the availability to manage shared
FortiToken Mobile licenses between FortiGate HA Active-Passive cluster
members. Scope FortiGate v7.0.14 GA, FTM license (EFTM-number). Solution
Consider that a FortiGate HA cluster ...
Description This article describes the setup of SSL VPN users that also
need FSSO logon information. Since FSSO builds on AD logon events that
occur when the user causes a logon event on the DC, FSSO will not work
with SSL VPN as expected. The Window...
Description This article describes how to process a logon event when
FortiAuthenticator acts as an FSSO CA and a Remote LDAP Server
configured with a UPN for the username attribute. There are cases when
the sAMAccountName attribute does not match the...
Description This article describes how to avoid radius authentication
failures for local admin-profiled accounts on FortiAuthenticator (FAC),
when a request comes from Radius-Clients. Scenario: FortiAuthenticator
acts as Radius Server. There are seve...
I would suggest considering placing your FGT before Mikrotik, and adjust
your firewall policies on FGT. Then, send all traffic to Mikrotik which
could act as default route to your FGT. If you have several segments,
and all routes are in the Mikrotik,...
Dear team, before purchasing, or getting a device from second hand,
please ensure that the legacy owner has active email in the support
portal, and can transfer his device to you. Meanwhile, be informed from
Local Sales Representatives, if you purcha...
Have a look also to this documentation, step #2. It should be possible
to perform without EMS server as @ozkanaltas said:
https://docs.fortinet.com/document/forticlient/7.2.4/administration-guide/445907/configuring-autoconnect-with-username-and-passw...
Could you make a packet capture with some debugs on FGT enabled, and
compare outputs. Which device does terminate connection? Maybe you could
see some errors from debugs: 1. packet capture between FGT and DC. 2.
debugs: diag de reset diag de app fnba...