Re: FortiAPs firmware update failure

lgupta · 10-26-2025

Description This article describes how to enable and display logs related to local-out DNS traffic. Scope FortiGate v7.6.0+. Solution Logging for local-out DNS traffic can only be enabled by the CLI. However, the logs can be displayed via the GUI and...

lgupta · 01-20-2025

Description This article describes how the 'Class' Attribute of type String, defined in Network Policy on Windows NPS Server can be used to match the user-group(s) in the FortiGate. Scope FortiOS. Solution Steps on NPS Server: Define the 'Class' Attr...

lgupta · 10-21-2024

Description This article describes that in case of lost access to the admin account with a super_admin profile, follow the steps to restore the admin account with a super_admin profile. Scope All FortiOS. Solution To begin, let us understand how it i...

lgupta · 08-20-2024

Description This article describes how it is possible to block a certain country and allow the rest of the world to connect to SSL VPN. Scope FortiOS. Solution Step 1: Go to Policy & Objects -> Addresses, select 'Create new', select 'Geography' as th...

lgupta · 08-02-2024

Description This article describes how to verify the SSL VPN connection type of connected users. Scope FortiGate. Solution Step 1: Add an 'SSL VPN' Monitor which is under the Network Section as described here: Technical Tip: Monitor tab from GUI. Ste...

lgupta · 01-04-2025

Hello Aadar-Soomro, Good day! Thank you for reaching out. Can you please share the CLI output of the SDWAN rule you have configured? config system sdwan config service show *Please obfuscate sensitive information before sharing the output*Please ref...

lgupta · 09-29-2024

Hello GIAdmin, Good day! I have tested with the above configuration and sending traffic between subnets in the same spoke VCN but the FW does not do policy validation, it sends the traffic directly. Could you please confirm if the traffic is hitting ...

lgupta · 08-25-2024

Hello ATryingEngineer, Good day! This is correct that FGT will send auth request to all the remote servers [ldap + radius] and will accept the one that replied with ACCEPT the fastest.Here is the reference: https://community.fortinet.com/t5/FortiGate...

lgupta · 08-20-2024

Hello Jason1683416, Good day!' If you have found a solution, please like and accept it to make it easily accessible to others. Thank you!

lgupta · 08-18-2024

Hello Jason1683416, Good day! Could you please confirm which browser you are using for authentication? FortiClient in-build or external browser. Please try to switch to the other or try using FortiClient 7.2.4.0972 to see if that helps.Thank you!

User Statistics

User Activity

Technical Tip: How to enable and view logs for local-out DNS traffic

Technical Tip: How to configure Group Matching using Radius 'Class' Attribute on Windows NPS

Technical Tip: How to recover admin account with super_admin profile

Technical Tip: How to block a certain country and allow rest of the world to connect to SSL VPN

Technical Tip: How to verify the SSL VPN connection type (Web mode or Tunnel mode)

Re: Un Even traffic distribution between 4 SDWAN zone members

Re: Subnets in hub architecture and spokes in OCI

Re: MFA for SSLVPN while also using LDAP Groups

Re: The first connection using Microsoft Entra SSO integration with FortiGate SSL VPN may fail rando

Re: The first connection using Microsoft Entra SSO integration with FortiGate SSL VPN may fail rando

Re: FortiAPs firmware update failure

Re: Anyone experiencing GUI Authentication issues ...

Technical Tip: Get the public IP of the WAN connec...

Re: Fortimanager displays application id instead o...

Re: Subnets in hub architecture and spokes in OCI

Re: QOS for Team services

Re: Fortigate to resolve local DNS entry for addre...

Re: Fortigate Azure and Zones

Re: FortiGate 40F firewall onprem log to PostgreSQ...

Re: SPAN Mirroring Multiple Ports (FortiGate 101F)

KCS

User Statistics

User Activity

You are leaving our website