Description This article describes configuring Client IP exception when
false positive SQL/XSS Syntax Based Detection injection triggered. Scope
FortiWeb. Solution Certain application functionalities or data inputs
from client could inadvertently tri...
Description This article describes how to solve CVE-2024-6387 on
affected versions and steps to disable SSH administrative access via the
interface as a workaround. Scope FortiWeb, FortiWeb-VM. Solution PSIRT
advisories (FG-IR-24-258) mentioned Forti...
Description This article describes how to use Postman/curl to export
FortiADC system debug files through REST API. Scope FortiADC, FortiADC
VM. Solution Create a REST API administrator or regenerate the API key
if there is an existing REST API admini...
Description This article provides FortiADC-Manager requirement on adding
new or extending mounted hard disk. Scope FortiADC-Manager VM. Solution
FortiADC-Manager # get system status Version: FortiADC-Manager_VM
v7.4.1,build0065,240712 CM Registration...
Description This article describes how to configure and enable
Credential Stuffing Defense in Use Tracking Policy. Scope FortiWeb,
FortiWeb-VM. Solution Requirement: Valid Credential Stuffing Defense
Contract. Database synchronized via FortiGuard. Fr...
Hello @defsdefs12, FortiADC 7.6.0 now supports HA cluster up to 8 member
nodes. Please refer New Features documentation.
https://docs.fortinet.com/document/fortiadc/7.6.0/new-features/092029/high-availability
Thanks. Regards, Shafiq
Hey @defsdefs12, I'd suggest to start with understanding the HA
deployment modes and redundancy objectives to be met. You can refer
below documentation as it provides sample configuration, topology, how
traffic flows in HA and troubleshooting
steps.h...
Hello @sndyblz, if user source IP is real client IP, you can use Client
IP exception. 1. Identify which XSS category was triggered. e.g HTML Tag
Based XSS Injection 2. Set Client IP exception. Thanks!
Hello @jwiest, In Active-Passive HA, the secondary doesn't initiate
health check probes to real servers and respond to virtual server
service which is why real server status in Logical Topology is shown
down in secondary. There were some changes in t...
Hello @sheerazali, There are some cases where Android device requires
complete certificate chain provided by the server(which is FortiWeb). I
can see you mentioned a wildcard certificate imported into FortiWeb
server policy. Can you also import its i...