We are using a Gate running 7.4.7 as a RA IPSec VPN for our clients, and
the FortiClient is version 7.4.3.1790. One of the servers has a GPO that
enforces encryption between the various clients and a server, and this
traffic is never placed in the tu...
We are in the process of moving our VPN users to IPSec RA VPN, but we
need to use SAML SSO. This requires some port to be opened up, so we're
using tcp/9443 like the documentation. The reason we're moving away from
SSL VPN is because of the large num...
IPSec VPN with SAML was configured according to
https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-configure-Microsoft-Entra-ID-SAML/ta-p/307457.
The configuration seems to be in place according to the documentation,
but I get ERR_CERTI...
We just received licensing for FortiClientEMS, and I'm not following the
documentation for setting this up. 1. The request to build the
FortiClientEMS server has been sent, but it will be a few days before
it's ready. I don't have the ability to test...
We're sending all logs from FAZ running 7.4.6 to an external log
collector, but we want to not send some traffic, such as NetFlow over
tcp port 2055. Under Systems Settings > Advanced, there is a Log
Forwarding tab where we've defined where the messa...
It has indeed been pushed: They use 53/udp for DNS to our internal AD
servers. We have other exclusions that are working properly, and I've
attempted various iterations for Ubuntu with no success.
