fortinet single sign-on in polling mode for a windows ad network

6

254 The FortiGate Cookbook 5.0.6 Internet Windows AD Internal Network FortiGate Polling Mode 1. Adding the LDAP Server to the FortiGate 2. Conﬁguring the FortiGate unit to poll the Active Directory 3. Adding an FSSO user group 4. Adding a ﬁrewall address for the internal network 5. Adding a security policy that includes an authentication rule 6. Results Fortinet Single Sign-On in Polling Mode for a Windows AD network This example uses Active Directory Polling to establish Fortinet Single Sign-On (FSSO) for a Windows AD Domain Controller, without requiring a FortiAuthenticator or a Collector Agent running on the Windows AD Domain to act as an intermediary between the FortiGate and the domain.

Upload: phamcong

Post on 15-Dec-2016

221 views

Category:

Documents

0 download

Report

Download

Embed Size (px):

TRANSCRIPT

Page 1: Fortinet Single Sign-On in Polling Mode for a Windows AD network

254 The FortiGate Cookbook 5.0.6

Internet

Windows ADInternal Network

FortiGatePolling Mode

1. Adding the LDAP Server to the FortiGate

2. Configuring the FortiGate unit to poll the Active Directory

3. Adding an FSSO user group

4. Adding a firewall address for the internal network

5. Adding a security policy that includes an authentication rule

6. Results

Fortinet Single Sign-On in Polling Mode for a Windows AD networkThis example uses Active Directory Polling to establish Fortinet Single Sign-On (FSSO) for a Windows AD Domain Controller, without requiring a FortiAuthenticator or a Collector Agent running on the Windows AD Domain to act as an intermediary between the FortiGate and the domain.

Page 2: Fortinet Single Sign-On in Polling Mode for a Windows AD network

Fortinet Single Sign-On in Polling Mode for a Windows AD network 255

Adding the LDAP Server to the FortiGateIn the FortiGate web interface, go to User & Device > Authentication > LDAP Servers. Add your LDAP server details.

Configuring the FortiGate unit to poll the Active DirectoryNext, go to User & Device > Authentication > Single Sign-On.

For the Type, select Poll Active Directory Server. Enter the IP, username and password, and select the LDAP server you added previously. Ensure Enable Polling is checked.

Adding an FSSO user groupGo to User & Device > User > User Groups, and add the desired AD member groups to the group.

Page 3: Fortinet Single Sign-On in Polling Mode for a Windows AD network

256 The FortiGate Cookbook 5.0.6

Adding a firewall address for the internal networkGo to Firewall Objects > Address > Addresses, and create an internal network address to be used by the policy.

Adding a security policy that includes an authentication ruleGo to Policy > Policy > Policy.

Create a User Identity policy and add an authentication rule to allow your FSSO group to access the internet.

Page 4: Fortinet Single Sign-On in Polling Mode for a Windows AD network

Fortinet Single Sign-On in Polling Mode for a Windows AD network 257

ResultsGo to Log & Report > Traffic Log > Forward Traffic. When users log into the Windows AD network, the FortiGate will automatically poll the domain for their account information, and record their traffic.

Select an entry for more information.

Page 5: Fortinet Single Sign-On in Polling Mode for a Windows AD network

258 The FortiGate Cookbook 5.0.6

Page 6: Fortinet Single Sign-On in Polling Mode for a Windows AD network

Fortinet Single Sign-On in Polling Mode for a Windows AD network 259

2018 NATIONAL ELECTIONS - POLLING STATIONS ......2018 NATIONAL ELECTIONS - POLLING STATIONS REGION INKHUNDLA POLLING DIVISION POLLING STATION HHOHHO HHUKWINI Dlangeni Nsukumbili High

FortiOS Handbook: User Authentication - Fortinet Docs …docs.fortinet.com/uploaded/files/1041/fortigate... · · 2014-01-1049 Authentication ... Configuring Fortinet Single Sign

Fortinet Maintenance Renewal and Purchase New Fortinet ......Fortinet Maintenance Renewal and Purchase New Fortinet Products IFB # MDM0031039332 4 SECTION 1 — BACKGROUND 1.1 Background

Fortinet sandboxing

Fortinet presentacion

Fortinet Product Life Cycle Information - ERC · Fortinet Product Life Cycle Information Fortinet suggests that customers familiarize themselves with the Fortinet Product Life Cycle

Polling Place / Polling Station Evaluation Checklist...Polling Place / Polling Station . Evaluation Checklist . Part A – Proposed polling place details. Polling place identifier

Bougainville Referendum Polling ScheduleRegion Community Government Ward Polling Venue Polling Date Polling Time Team Number Polling Villages North HAKU Lontis 2 Tegese Thursday, 28

Current list of polling districts and polling places · POLLING DISTRICTS, POLLING PLACES AND POLLING STATIONS REVIEW 2019 Current list of polling districts and polling places LUDLOW

Manual Fortinet

Review of Polling District, Polling Places and Polling …...Review of Polling District, Polling Places and Polling Stations 2019 Consultation Responses and Returning Officer’s Provisional

POLLING DISTRICTS, POLLING PLACES AND POLLING ......1 POLLING DISTRICTS, POLLING PLACES AND POLLING STATIONS REVIEW These maps show the distance electors would have to walk to a new

Fortinet Messages.pdf

Virtualization Fortinet

Fortinet Private Cloud Security Solutions,Fortinet Private ... · The solution integrates seamlessly with the Fortinet Security Fabric, providing transparent visibility, centralized

Polling Station Polling station Name Place Polling …ceo.uk.gov.in/files/LOK SABHA Election-2004/haridwar.pdfPolling Station No Polling station Name Place Polling Centre No District

Review of Polling Districts, Polling Places and Polling Stations...4 Review of Polling Districts, Polling Places and Polling Stations 2019 6.5. These final proposals will be presented

Fortinet FortiGate 100D - MicroAge · Fortinet FortiCare support offerings provide comprehensive global support for all Fortinet products and services. You can rest assured your Fortinet

SCHEDULE OF POLLING DISTRICTS AND POLLING ......Polling District Physical Location See Avonmouth ward map Polling District Polling Place Electorate * No. of Voters in Polling Station

Fortinet Product Matrix - Wick · PDF filesos juniper fortinet igration capaign partner ersion juniper product fortinet product target location junper firewall throughput fortinet

1 Fortinet Confidential September 11, 2015 Fortinet An Introduction

LIST OF POLLING STATIONS S.No Polling Polling Area...S.No Sl No. of Polling Station Locality of the Polling Stations Building in which it will be located Polling Area Whether for all

POLLING DISTRICTS AND POLLING PLACES REVIEW … Polling... · Interim Review of Polling District and Polling Places for Burscough East Ward Polling District BEC INTERIM REVIEW 2016

Fortinet Server Authentication Extension Administration Guidepub.kb.fortinet.com/ksmcontent/Fortinet-Public/current/Fortigate_v4.… · Fortinet documentation ... FSAE components

Fortinet and Tufin Integrated Security Solution · PDF file 1 Fortinet and Tufin Integrated Security Solution Network Security Policy Orchestration for Fortinet Firewalls Fortinet

Hull City Council Review of Polling Districts, Polling Places ... District...constituency/ward. Polling place The designated area for a polling district in which polling stations are

Review of polling districts and polling places

Fortinet Secure SD-WAN Data Sheet...Multi-tenant Cloud Orchestration FortiManager Cloud through FortiCloud, Single Sign-on Portal to manage Fortinet NGFW and SD-WAN, Cloud-based network

1 Fortinet Confidential September 5, 2015 Fortinet An Introduction

Apresentação fortinet