explicit proxy authentication

Author
mahmoud93
New Member
  • Total Posts : 12
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/09/20 03:42:08
  • Status: offline
2019/10/22 03:07:43 (permalink)
0

explicit proxy authentication

I have fortigate enabled explicit proxy on it, im using fsso as my authentication rule in addithion to ldap I have made made this on one authentication rule.the idea of the setup is be ldap as failover soluation in case of fsso not working Q if i have policies with this order 1ST policy - spacific user group using LDAP AUTH2Nd policy - all user group contain the above group but with FSSO3RD policy - Same above user group using ldap And group is exist on fsso lsit and work - - ldap will work or not i.e authentication page will not appear to enter credentials right Also in user monitor im seeing that beside user wtittien authentication firewall, explicit proxy although user group is SSO
#1
xsilver
Expert Member
  • Total Posts : 449
  • Scores: 103
  • Reward points: 0
  • Joined: 2015/02/02 03:22:58
  • Location: EMEA
  • Status: offline
Re: explicit proxy authentication 2019/10/22 04:19:24 (permalink)
5 (1)
Hi,
scenario and words like "user wtittien" not clear to me. However if your authentication setting says that sso-auth-scheme is some authentication scheme with method set to fsso, then explicit proxy should use FSSO, and if workstation IP where you are testing from is already known to FSSO and listed, then traffic should be allowed according to group membership of user and groups known from that source IP.

Kind Regards,
Tomas
#2
mahmoud93
New Member
  • Total Posts : 12
  • Scores: 0
  • Reward points: 0
  • Joined: 2018/09/20 03:42:08
  • Status: offline
Re: explicit proxy authentication 2019/10/22 08:09:34 (permalink)
0
Is it double to configure FSSO as primary method and ldap as secondary in case FSSO didnt work
#3
Jump to:
© 2019 APG vNext Commercial Version 5.5