Fortigate 60D(v6.0.13) and FortiAnalyzer(v7.2.5) I'm having strange
issue, Fortigate dashboard show two admins logged in - Admin (with my
workstation ip ) and Admin (127.0.01). FortiAnalyzer system events for
FGT60D show the following. Every hour the...
I have couple of Linux Desktops(Ubuntu 22.04 LTS and Linux Mint LTS
versions) that need to use SSO for internet access and other networks.
On Fortigate static ip based rules are used for these Linux desktops.
These linux desktops are joined to Window...
Is there a FSSO agent for linux LDAP server ?. Is it possible to achieve
SSO with Fortigate and Linux LDAP server without additional Fortinet
Hardware/Software ?. RSSO is not possible due to incompatible network
infra and Not interested in deploying ...
Freeradius server is configured to send Radius accounting packets to our
firewall running 5.0.7. Wireless users get network access thru Radius
authentication. We use user email address as the username, and email
address contain up to 55 characters. A...
I have FSSO Agent based authentication for internet access, this works
for wired Windows users. I've setup Wireless controller to use Radius
for AAA. Clients that are getting authenticated thru Windows NPS are
unable to browse the internet as FSSO Ag...
Use RADIUS for wireless and vpn. If possible, use .1x with RSSO for
wired authentication, thus you can avoid AD/FSSO related complications.
Not forcing any additional command line on linux. Default local user is
used only for system maintenance, FSSO...
unfortunately "set serial" command is not available on this
firmware.config log fortianalyzer setting set status enable set
ips-archive enable set server set enc-algorithm high-medium set
ssl-min-proto-version default set conn-timeout 10 set
monitor...
Hello, on FAZ, correct username and password are configured. on FGT
following is configured, config log fortianalyzer setting set status
enable set server set enc-algorithm high-medium set certificate
"Fortinet_Factory" set upload-option 1-minute se...
Found a solution. Windows Server FSSO - Polling Mode with Poll logon
sessions using Windows NetAPI.Ubuntu - Windows AD integration using
winbind (have done fresh OS install without sssd components) On DNS
server, manual A record need to be created fo...
Hi Debbie, Many thanks for these FSSO Agent tips, really appreciate. I
have created "allow_dollar_sign_in_usernames" DWORD and set value to "1"
in HKEY_LOCAL_MACHINE\software\wow6432node\fortinet\fsae\collectoragent.
Now DC Agent logs show two entrie...
