How to configure FortiGate Remote Access SSL-VPN. Using Active Directory authentication, (with LDAPS).Using the FortiClient www.petenetlive.com/kb/articl... CA Export Command: certutil -ca.cert certificate-name.cer
Пікірлер: 15
@rabfiz70252 жыл бұрын
Awesome video thank you! just wanted to mention that I was able to login to the SSL VPN portal but not to the LAN resources. Enabling NAT in the firewall policy fixed that issue.
@ddubeya2 жыл бұрын
This worked perfectly for me. Thank you for the detailed direction.
@mariyatelitsina70083 жыл бұрын
thank you for such a detailed instuction.
@everlastinggobstopper68792 жыл бұрын
very nice instructions..i used it verbatim
@Sabs761010Ай бұрын
Hi, i have a question , how to setup the SSL VPN in order the users get connect to the VPN throught fqdn instead ip?
@tonymarms89083 жыл бұрын
hi may i know what fw version is running in your test environment? I can't import CA certificate having error "Incorrect certificate file format for CA/LOCAL/CRL/REMOTE cert. 😢
@Traumatree Жыл бұрын
The sound is really bad, but the most important information of the ldap server configuration on the Fortigate is to use the FQDN name of your LDAP server and not its IP address, as the certificate doesn't have the IP but the FQDN.
@Sabs761010Ай бұрын
Hi, i have a question , how to setup the SSL VPN in order the users get connect to the VPN throught fqdn instead ip?
@romansubbotin51753 жыл бұрын
Dear PeteNet, m.b. you know how to configure inactivity shutdown after 10 min inactivity? Thank You.
@powerofgames66372 жыл бұрын
how i can make the vpn connected only through domain laptop only , not personal laptop or phones
@azharifahmi39032 жыл бұрын
Hi, how I get file self-sign in Server-Certificate?
@romansubbotin51753 жыл бұрын
Hi thare, how can i finde tutorial where you prepared Windows server roles: Certification autority and NPS? Thank you!
@dont_test_me_bish3 жыл бұрын
You won't need all that unless using RADIUS. LDAP/S works direct from firewall to the DC.
@gercast822 жыл бұрын
@@dont_test_me_bish You need a CA to LDAP over SSL (LDAPS) to work. In the other hand, LDAP doesn't need a CA.
@dont_test_me_bish2 жыл бұрын
@@gercast82 Not if you point the client to the ssl port(636) and pre-accept the cert or turn off cert verification on the client. Who knows when MS CA is gonna crap the bed? This still keeps cleartext creds off the wire