Hot!ASK - user for system - limited to monitor VPN IPSEC

Author
papapuff
Silver Member
  • Total Posts : 109
  • Scores: 0
  • Reward points: 0
  • Joined: 2012/05/24 20:31:44
  • Status: offline
2018/11/20 06:13:01 (permalink)
0

ASK - user for system - limited to monitor VPN IPSEC

hi there,
 
I need to assign user with authorize:
- change their password
- access IPsec monitor, and able to bring-up and bring down connection, but restrict to modify its settings
 
this user can't access other menus besides above.
 
can I do that?
 
we are using:
fortigate 60D with firmware 6.0 something.
 
looking for your help, guys.
 
thanks in advance
#1

2 Replies Related Threads

    xsilver_FTNT
    Expert Member
    • Total Posts : 392
    • Scores: 63
    • Reward points: 0
    • Joined: 2015/02/02 03:22:58
    • Status: offline
    Re: ASK - user for system - limited to monitor VPN IPSEC 2018/11/20 06:50:54 (permalink)
    0
    Hi,
    you can try to make admin with very limited access profile.
    You can also have end users on LDAP so no need to access FGT to change their password.
    And VPN would be better to be set with auto negotiate so whenever there will be data to destination behind it the VPN will be brought up by FGT automatically and when data stops to flow it will be down again. Automatic withotu necessity to have user manually interfering with it.

    Kind Regards,
    Tomas
    #2
    papapuff
    Silver Member
    • Total Posts : 109
    • Scores: 0
    • Reward points: 0
    • Joined: 2012/05/24 20:31:44
    • Status: offline
    Re: ASK - user for system - limited to monitor VPN IPSEC 2018/12/20 02:11:20 (permalink)
    0
    hi Tomas,
     
    thanks for share. sorry late reply.
    I tried to search limited admin, but not found. can I get more guidance?
     
    about VPN, yes it's been set to auto negotiate, but somehow I need to manually interfering it. maybe there is "timeout" for several times. not sure.
    #3
    Jump to:
    © 2019 APG vNext Commercial Version 5.5