Hot!Explicit Proxy Multiple Realm

Author
mfo
New Member
  • Total Posts : 3
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/04/13 08:38:22
  • Status: offline
2018/04/13 08:43:45 (permalink)
0

Explicit Proxy Multiple Realm

Hi,
 
I have a fortigate using explicit proxy configured.
The realm is populated with domain.local
I need to use a second realm with the same keytab (we are adding a new UPN suffix in AD for Office 365 federation needs)
The new realm to add would be domain.com
 
It is possible and does someone know how to do this change ?
#1

6 Replies Related Threads

    emnoc
    Expert Member
    • Total Posts : 5123
    • Scores: 322
    • Reward points: 0
    • Joined: 2008/03/20 13:30:33
    • Location: AUSTIN TX AREA
    • Status: offline
    Re: Explicit Proxy Multiple Realm 2018/04/13 12:47:27 (permalink)
    0
    Are you talking about the realm under "config web-proxy explicit" ?
     
    Ken
     

    PCNSE,  NSE , Forcepoint ,  StrongSwan Specialist
    #2
    mfo
    New Member
    • Total Posts : 3
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/04/13 08:38:22
    • Status: offline
    Re: Explicit Proxy Multiple Realm 2018/04/16 01:58:53 (permalink)
    0
    Yes
    I need to know if it is possible to configure multiple realm.
    #3
    James_G
    Silver Member
    • Total Posts : 66
    • Scores: 4
    • Reward points: 0
    • Joined: 2016/02/28 02:55:47
    • Status: offline
    Re: Explicit Proxy Multiple Realm 2019/01/21 05:13:13 (permalink)
    0
    Hi - did you find a solution
     
    I think I have same issue
    #4
    mfo
    New Member
    • Total Posts : 3
    • Scores: 0
    • Reward points: 0
    • Joined: 2018/04/13 08:38:22
    • Status: offline
    Re: Explicit Proxy Multiple Realm 2019/01/21 05:27:31 (permalink)
    0
    Unfortunately, it seems to not be possible.
    So I had no solution for that.
    #5
    James_G
    Silver Member
    • Total Posts : 66
    • Scores: 4
    • Reward points: 0
    • Joined: 2016/02/28 02:55:47
    • Status: offline
    Re: Explicit Proxy Multiple Realm 2019/01/21 06:22:46 (permalink)
    0
    Thanks anyway - I have a call logged with support to see what they have to say on the subject
     
    We can't be the only people that have had to change the UPNs for O365
     
    O365 has caused me nothing but issues :(
    #6
    James_G
    Silver Member
    • Total Posts : 66
    • Scores: 4
    • Reward points: 0
    • Joined: 2016/02/28 02:55:47
    • Status: offline
    Re: Explicit Proxy Multiple Realm 2019/01/23 02:26:06 (permalink)
    0
    I think I have this sorted - this is under 6.0.4 for reference
     
    You can have multiple authentication rules, each with different source address filters, that reference different authentication schemes. Each scheme references a different "domain controller" object - these can physically reference the same LDAP server but we keep the domain name different.
     
    I've tested and it seems to all be OK.
     
    Thoughts?
     
    config user domain-controller
    edit "domain.local"
    set ip-address 10.10.10.10
    set domain-name "domain.local"
    set ldap-server "DC01"
    next
    end
     
    config user domain-controller
    edit "domain.com"
    set ip-address 10.10.10.10
    set domain-name "domain.com"
    set ldap-server "DC01"
    next
    end
    #7
    Jump to:
    © 2019 APG vNext Commercial Version 5.5