I have configured FSSO for a client in conjunction with and explicit
proxy on a Fortigate FW and works well. Testing has highlighted a
potential issue I wasn't aware of, in that when a user locks their
workstation, the FG is sent a logoff event from ...
Hi I am testing some Explicit Proxy configuration and have configured an
authentication rule and scheme to use agentless NTLM auth, which works
fine. I can see the authenticated users in the Firewall User Monitor
Dashboard, where is shows a time-out ...
I am configuring FSSO using the polling method and I am seeing some
strange results. The Fortigate is seeing the user logon event and I can
see the corresponding Kerberos event IDs 4768 and 4769 on the AD server,
however the Fortigate is then logging...
Hi I have a requirement to block a range of file types, however quite a
few of them aren't in the supported file type list in the file filter or
for use with DLP filters. For example, I need to block inf, jse, lnk,
vbe, vbs extensions, but they are n...
Hi I have a Fortigate 40F running v7.2.2 and I am trying to configure a
DLP profile to block downloads of files 100MB or larger. This profile is
applied to a proxy policy. I've been testing the profile with various
sizes of downloads and it doesn't a...
This is basic FSSO with CA and DC Agents. How does the FG get informed
of a logoff event if it is not monitoring logoff events, must be some
information from the DC? I can logoff events from the CA in the user
event logs. I will do some further inves...
Thanks pminarik I found what the issue was through the fssod debug, the
time was out between the Fortigate and the AD
server[process_logon_time_stats:101] logon(john:10.245.225.41)'s
effective time(1673970919) on Fortigate is before that(1673971018) ...