Hi All, I have setup FAC as a RADIUS server and connecting AD using
LDAP. The FAC has joined the AD domain and FAC able to retrieve the user
from AD domain. When I try to authenticate user using 802.1x, it shows
the authentication failed due to the m...
Hi All, I found that there is minimum privilege AD user account for
MSCHAP2/PEAP authentication from Fortinet guide (Create All Child
Objects, Write All Properties, and Change password under Computer
Objects). But I would like to know why these permi...
Hi Everyone, I have restored config from FGT 301E to FGT 100E, then
upgrade version 6.2.9 to 6.4.9, it was successful. However, the SSLVPN
is not able to access via FortiClient. After I changed the user
password, it will able to connect. Did anyone f...
Hi everyone, I would like to remove root vdom and remain another created
vdom. I did remove all the reference on root vdom but it still unable to
be removed. Is it possible to remove root vdom? Thank you.
No, what I did is just create a new domain user without any permission.
Then remove the old FAC computer in AD and everything go smooth. So, it
seems like the permissions don't relate to the MSCHAp2/PEAP
authentication, but will it relate to other fe...
But without providing the permission, I am able to authenticate
successful too. So, I am confusing why are the permissions are needed
and is there any feature of FAC will not be able to use if I not
allowing the permission?
