Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Fullmoon
Contributor III

ZTNA

does anyone here tried to configured their existing FG and FortiEMS for ZTNA setup?

Fortigate Newbie

4 REPLIES 4
skyegool
New Contributor

Hi,

 

I did, tags worked awesome before, ZTNA added complexity, and you cant activate it via GUI (bug)

You must enable it via CLI

 

config firewall policy edit <ID> set ztna-status enable set ztna-ems-tag <ZTNA_TAG_NAME? next end

 

 

 

Fullmoon

skyegool wrote:

Hi,

 

I did, tags worked awesome before, ZTNA added complexity, and you cant activate it via GUI (bug)

You must enable it via CLI

 

config firewall policy edit <ID> set ztna-status enable set ztna-ems-tag <ZTNA_TAG_NAME? next end

 

thanks for the response mate. So having FG and EMS/FortiClient are good enough for ZTNA setup?

 

 

 

Fortigate Newbie

martin28
New Contributor

It does not work for me, traffic not matching the policy.

peisenberg
Staff
Staff

Hi @Fullmoon 

Sorry for late response. Do you still need help with ZTNA ?

Pavol

TAC