Fortigate - block sites with AD connection

Posted on 2014-11-06
Last Modified: 2014-11-18
Hi Experts,

I have a FORTIGATE 200B firewall cluster from running.
The webfilter is active for all with a policy.
Always when I have a person who needs special access to several sites, which are normally blocked, I have to create a new policy, reserve the IP of the user and blind this to the new policy.

Is it not possible to connect the FORTIGATE to my AD and use the AD user to allow  or block a site ?
Question by:Eprs_Admin
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 7
  • 2

Expert Comment

ID: 40426077
Use LDAP or FSAE feature in fortigate to attain the goal

Author Comment

ID: 40426096
do you have a manual to set up LDAP ?

Accepted Solution

Jinujoz earned 500 total points
ID: 40426104
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!


Author Comment

ID: 40426146
is it possible with this configuration to create a policy, based on a AD usergroup to block facebook and exclude some users from this rule ?
What do I need ? LDAP or FSAE ?

I dont know what to configure in my case ....

Author Comment

ID: 40434694
Can you explain how to use LDAP with the FORTIGATE ?
I have read your link and LDAP is configured.
But how to create a policy to block sites and exclude some users from it ?

Author Comment

ID: 40434706
what I don´t understand, in my FORTIGATE they speak about FSSO and in the manual about FSAE and LDAP.

Author Comment

ID: 40434799
when I activate the Enable Identity Based Policy, then all internet access is gone.
Can you help me out to configure it properly ?

Author Comment

ID: 40449209
I need help to set this up in the Fortigate.
What do I need to allow a user a blocked site ?

Author Comment

ID: 40450057
ok I got it.
Thanks for your help which was not very satisfied :-(

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will inform Clients about common and important expectations from the freelancers (Experts) who are looking at your Gig.
Keystroke loggers have been around for a very long time. While the threat is old, some of the remedies are new!
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question