Description This article describes how to enable cookiesession1 secure
flag attribute in the FortiWeb Cloud application. Scope FortiWeb Cloud.
Solution By default, cookiesession1 generated by FortiWeb Cloud is not
set with secure flag attribute. To p...
Description This article describes how to restore a FortiADC after RMA.
Scope FortiADC, FortiADC-VM Solution Administration Access: Access the
CLI console. Configure management IP. Access management IP through GUI.
Enter admin with no password and se...
Description This article describes the requirements of enabling
cookiesession1 secure flag attribute. Scope FortiWeb, FortiWeb-VM.
Solution Requirement: HTTPS service is enabled in the server policy:
Client management is enabled in the Web Protection...
Description This article describes how to use server load-balancing
scripting to achieve the requirement of adding an HTTP Header in the
response direction. The objective is to enable the client/developer to
observe the server identifier in the respo...
Description This article describes organization selection and Master
account privilege for organization creation. Scope FortiGSLB Cloud
GSLB-as-a-Service. Solution Once an IAM user logs in to FortiGSLB, the
IAM user must select an organization to pro...
Hello romank, You can leave it blank as Client Hello contains SNI that
would match domain name in the SNI policy associated in server policy.
"pr_end_of_file_error" error seems surrounding on TLS problem. You can
try to enable only TLS 1.2 and 1.3 an...
Hello arash7362, FortiWeb responds with HTTP 500 return code when source
IP matches GeoIP policy region blocklist with attack replacement message
regardless of action set in GeoIP policy. Verify if an attack log
generated due to Geo IP block and if c...
Hello romank, Basically, you can monitor with a tool such as PRTG for
concurrent connections using SNMP. You can download FortiWeb MIB file
via Sytem > Config > SNMP Thanks. Regards,Shafiq
Hello romank, As per FortiWeb Administration Guide on Cookie Security
"Signed" mode, FortiWeb will track cookies value responded by web server
in the first HTTP/S request from the client, hash it and track if there
is any tampering in the following r...
Hi Armando, This is not possible in the current design. If you find my
previous suggestion as solution, you can mark this as Solved. Thanks.
Regards, Shafiq