Solved

Fortigate - block sites with AD connection

Posted on 2014-11-06
9
529 Views
Last Modified: 2014-11-18
Hi Experts,

I have a FORTIGATE 200B firewall cluster from running.
The webfilter is active for all with a policy.
Always when I have a person who needs special access to several sites, which are normally blocked, I have to create a new policy, reserve the IP of the user and blind this to the new policy.

Is it not possible to connect the FORTIGATE to my AD and use the AD user to allow  or block a site ?
0
Comment
Question by:Eprs_Admin
  • 7
  • 2
9 Comments
 
LVL 1

Expert Comment

by:Jinujoz
ID: 40426077
Use LDAP or FSAE feature in fortigate to attain the goal
0
 

Author Comment

by:Eprs_Admin
ID: 40426096
do you have a manual to set up LDAP ?
0
 
LVL 1

Accepted Solution

by:
Jinujoz earned 500 total points
ID: 40426104
0
Use Case: Protecting a Hybrid Cloud Infrastructure

Microsoft Azure is rapidly becoming the norm in dynamic IT environments. This document describes the challenges that organizations face when protecting data in a hybrid cloud IT environment and presents a use case to demonstrate how Acronis Backup protects all data.

 

Author Comment

by:Eprs_Admin
ID: 40426146
is it possible with this configuration to create a policy, based on a AD usergroup to block facebook and exclude some users from this rule ?
What do I need ? LDAP or FSAE ?

I dont know what to configure in my case ....
0
 

Author Comment

by:Eprs_Admin
ID: 40434694
Can you explain how to use LDAP with the FORTIGATE ?
I have read your link and LDAP is configured.
But how to create a policy to block sites and exclude some users from it ?
0
 

Author Comment

by:Eprs_Admin
ID: 40434706
what I don´t understand, in my FORTIGATE they speak about FSSO and in the manual about FSAE and LDAP.
0
 

Author Comment

by:Eprs_Admin
ID: 40434799
when I activate the Enable Identity Based Policy, then all internet access is gone.
Can you help me out to configure it properly ?
0
 

Author Comment

by:Eprs_Admin
ID: 40449209
I need help to set this up in the Fortigate.
What do I need to allow a user a blocked site ?
0
 

Author Comment

by:Eprs_Admin
ID: 40450057
ok I got it.
Thanks for your help which was not very satisfied :-(
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
How to choose hardware firewall 5 47
Switch Uplinking Arista to Force 10 5 39
EIGRP STUB 19 74
Microsoft Surface Pro 4 networking 4 32
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

825 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question