Fortigate - block sites with AD connection

Posted on 2014-11-06
Medium Priority
Last Modified: 2014-11-18
Hi Experts,

I have a FORTIGATE 200B firewall cluster from running.
The webfilter is active for all with a policy.
Always when I have a person who needs special access to several sites, which are normally blocked, I have to create a new policy, reserve the IP of the user and blind this to the new policy.

Is it not possible to connect the FORTIGATE to my AD and use the AD user to allow  or block a site ?
Question by:Eprs_Admin
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 2

Expert Comment

ID: 40426077
Use LDAP or FSAE feature in fortigate to attain the goal

Author Comment

ID: 40426096
do you have a manual to set up LDAP ?

Accepted Solution

Jinujoz earned 2000 total points
ID: 40426104
Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.


Author Comment

ID: 40426146
is it possible with this configuration to create a policy, based on a AD usergroup to block facebook and exclude some users from this rule ?
What do I need ? LDAP or FSAE ?

I dont know what to configure in my case ....

Author Comment

ID: 40434694
Can you explain how to use LDAP with the FORTIGATE ?
I have read your link and LDAP is configured.
But how to create a policy to block sites and exclude some users from it ?

Author Comment

ID: 40434706
what I don´t understand, in my FORTIGATE they speak about FSSO and in the manual about FSAE and LDAP.

Author Comment

ID: 40434799
when I activate the Enable Identity Based Policy, then all internet access is gone.
Can you help me out to configure it properly ?

Author Comment

ID: 40449209
I need help to set this up in the Fortigate.
What do I need to allow a user a blocked site ?

Author Comment

ID: 40450057
ok I got it.
Thanks for your help which was not very satisfied :-(

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
During and after that shift to cloud, one area that still poses a struggle for many organizations is what to do with their department file shares.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question