FSSO Agent Based, is Traffic secure from agent to collector to Fortigate?

Author
crdmt
New Member
  • Total Posts : 1
  • Scores: 0
  • Reward points: 0
  • Joined: 2019/07/22 09:39:23
  • Status: offline
2019/07/22 09:49:01 (permalink)
0

FSSO Agent Based, is Traffic secure from agent to collector to Fortigate?

Hi,
 
We have setup FSSO using the DC agent based method and have a collector Agent connected to our Fortigate. All working as per the documentation.
 
However we have been asked a simple question that I can't find a clear answer on so far.
 
Is the traffic sent from the DC Agents to the Collector Agent encrypted/secure? Also the same for the traffic from the Collector Agent to the Fortigate?
 
The docs mention the ports used;
 
DC Agent keepalive and push logon info to CAUDP/8002CA keepalive and push logon info to FortigateTCP/8000 
We need to tick off that the traffic, as it contains user information is not floating through the network in a way that could be compromised.
 
Anyone have an insight in to this, it would be interesting and big help.
Thanks,
CD
#1

1 Reply Related Threads

    OneOfUs
    Bronze Member
    • Total Posts : 22
    • Scores: 0
    • Reward points: 0
    • Joined: 2019/07/16 06:32:59
    • Status: offline
    Re: FSSO Agent Based, is Traffic secure from agent to collector to Fortigate? 2019/08/14 14:28:08 (permalink)
    0
    I am uncertain, however you if you can run a mirror port / and or packet capture on the uplinked switch you should be able to see if the traffic on tcp/8000 udp/8002 is encapsulated.
    #2
    Jump to:
    © 2019 APG vNext Commercial Version 5.5