AnsweredHot!VPN with LDAP authentification

Author
peterjhd1218
New Member
  • Total Posts : 6
  • Scores: 0
  • Reward points: 0
  • Joined: 2012/08/05 17:41:14
  • Status: offline
2019/09/10 10:58:05 (permalink)
0

VPN with LDAP authentification

Hi, i gotta a question when an user is member of two LDAP groups and both groups has different portal in teh SSL VPN, each one with different range of addres.
My question is, when the user log in, to which group belong?
 
REgards
post edited by Admin_FTNT - 2019/09/10 23:32:22
#1
Elthon Abreu
Bronze Member
  • Total Posts : 52
  • Scores: 2
  • Reward points: 0
  • Joined: 2014/04/29 11:37:55
  • Location: Brazil
  • Status: offline
Re: VPN with LDAP authentification 2019/09/18 08:25:44 (permalink)
0
The Fortigate will follow the "top-down" rule... So, if the policy that allows "Group A" is above the policy from "Group B", your user will login by the Group A settings.
 
BR,

Elthon Abreu
FCNSA v5
#2
peterjhd1218
New Member
  • Total Posts : 6
  • Scores: 0
  • Reward points: 0
  • Joined: 2012/08/05 17:41:14
  • Status: offline
Re: VPN with LDAP authentification 2019/09/24 08:45:45 (permalink)
0
hi Elthon Abreu, thanks for your reply but still it´s not clear to my, let me get this right, i have two diferent SSL portal each one with different address range, according to you answer teh user will be log in with the first policy match that have one of the group that the user belong. 
#3
Elthon Abreu
Bronze Member
  • Total Posts : 52
  • Scores: 2
  • Reward points: 0
  • Joined: 2014/04/29 11:37:55
  • Location: Brazil
  • Status: offline
Re: VPN with LDAP authentification 2019/09/24 14:58:57 (permalink) ☼ Best Answerby peterjhd1218 2019/10/16 07:05:16
0
Can you send a print from your "ssl.root > internal" rules?

Elthon Abreu
FCNSA v5
#4
Jump to:
© 2020 APG vNext Commercial Version 5.5