Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Rimvydas
New Contributor

Created on ‎10-11-2018 06:37 AM

FortiClient compliance check fail

Hello,

 

I have trying to create endpoint with Compliance checking. I am using FortiClient + FortiEMS + FGT.

I have do compliance check by FGT, but profile are uploading from EMS server. Further I have no issues by checking Compliance everything looking well. When I will trying go to some website (in this example to temainfo.lt) I have redirected to: http://temainfo.lt]http://10.1.0.1:8009/target_image?all/[link]http://temainfo.lt[/link][/link]

 

Here 10.1.0.1 IP is my intra VDOM link IP. As I googled 8009 port by FGT are using to download FortiClient.

 

So problem is I can't reach any destination by enabling FortiClient Compliance checking in FGT.

Have somebody any suggestion where I have to check or something like that.

Attaching couple photos to make a picture.

 

Structure is something like: 

Endpoint(With fortiClient)->FGT(Servers VDOM)->FGT(root vdom)->internet

AD->FGT(Servers VDOM)->FGT(root vdom)->internet

 

Here is no rules to block traffic or something like that all policy are any to any.

 

 

Preview file
105 KB
Labels:
2568
0 Kudos
1 REPLY 1
Rimvydas
New Contributor

Created on ‎11-06-2018 11:36 PM

After testing issue have regarding this was FortiOS bug by recording user in couple VDOMS. Have upgraded FGT from 6.0.1 to 6.0.3 and issue resolved.

923
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.