I will try to make this brief. We have FSSO working against our Active
Directory in order to pull groups that we use to establish the level of
web filtering for a particular group. An example would be where the
network and firewall teams can reach si...
Is this even possible? We currently have all of our WAN interfaces
serving our Dial-Up clients but we now need to create a PTP IPSEC tunnel
between our Gates and a third party.Can this be done or will the P2P
tunnels need to go on a different interfa...
I've had 2FA working again Authenticator for some time but recently was
tasked with turning on the push notifications but my FortiClient does
not have a "Push" button and I really never knew it was supposed to. I
thought when you made the authenticat...
Hoping for some real world use cases for the following setup where we
are protecting a hardened front end web server that sort of proxies
connections into our Horizon VDI environment.. We currently have a VIP
on TCP.443 that publishes the previously ...
Please try to stay with me on this longer post... I've tried to shorten
it up but there is a lot to relay on this one and I appreciate your
taking the time and reading through it.. First off, Let me elaborate on
that Subject a little. My user is curr...
Yes, when you create the deployment packages, the files that EMS will
use to install FTC on the endpoints, there is a checkbox on the first
page of the wizard that says: " Keep updated to the latest patch" Simply
leave that unchecked and you will hav...
Debbie_FTNT, Thank you very much for yet another great and very
informative reply that could not be more spot on in this situation. With
that said, I am certain that at one point the rule with the AD groups as
I've outlined required ALL specifically,...
I know this post is kind of old but in case someone surfs in here
looking for the answer to this problem, the procedure I use is this: 1.
Disconnect from EMS2. Click on the "Lock" icon that can be found on the
FTC tab "Settings"' (this appears once o...
what does trace routes from vpn1 to vpn2 show?When running the traces
run packet sniffer on Fortigate CLI that's handling the connections:
diag sniffer packet any 'host IP of machine doing trace route" 4 999 l
That should show you what the issue is. ...
Well, to be honest the main concern here is just opening up that 443 to
essentially every bad actor in the United States to bang up against us
at will from now on is almost too much to bare. I know the vSecurity box
that sits in our DMZ in front of H...
