Category Archives: Authentication

Querying Nested LDAP Groups on the FortiGate

Use case: When dealing with LDAP queries, sometime you have issues with using nested groups.  That is, you have a…

By Manny Fernandez

February 23, 2021

Binding to LDAP with Minimum Access

Most of the documentation out there will tell you to configure a Domain Admin user to perform LDAP authentication.  When I…

By Manny Fernandez

May 3, 2020

Login Banner on Fortigate Firewalls

Not only is it good InfoSec Hygiene but most regulatory bodies require login banners.  With the Fortigate, it is easy…

By Manny Fernandez

September 19, 2019

Installing and Configuring FSSO

Fortinet Single Sign On or FSSO as it is called, is an agent that is installed on a Windows server…

By Manny Fernandez

September 13, 2019

Using Active Directory Groups to Control Web Content Policies

This is another question I get asked a lot.  When customers first deploy a Fortigate firewall and they have migrated…

By Manny Fernandez

September 9, 2019

Single Sign On with Fortigate VPN

As many of you know, RDP (Remote Desktop) is a huge problem today.  Some of my customers demand that we…

By Manny Fernandez

August 27, 2019

Managing Guest Users in Fortigate Firewalls

Sometime, a company may want to create guest users for wireless or wired connections.  Additionally, companies may want to have administrators with…

By Manny Fernandez

July 25, 2019

Fortigate DHCP and Microsoft Dynamic DNS

Remote branches that utilize Fortigate's DHCP do not update Microsoft DNS servers automagically.  Fortinet does not have a syncing feature…

By Manny Fernandez

May 22, 2019

Administering the Fortigate Firewall with LDAP Credentials

I am a big fan of having a centralized directory of users.  This makes it easy when that serial, crazy…

By Manny Fernandez

May 21, 2019

UPDATED – Certificate Pinning you SSL VPN with Microsoft CA and Fortigate Forticlient Using ‘user’ certificates

Customer wanted to ONLY allow devices that are trusted devices (owned by the customer) to connect using the ‘Full Access”…

By Manny Fernandez

May 15, 2019

Secure LDAP and AD Password Change via Forticlient

First of all, I wanted to give credit to a good friend of mine (Brian Modlin) that hit me up…

By Manny Fernandez

April 20, 2019

Configuring LDAP Authentication for Remote Access VPN

The Fortigate platform allows for multiple authentication options for VPNs.  In the past, I used a lot of Cisco ASA…

By Manny Fernandez

April 9, 2019

Fortitoken with Active Directory on Fortigate

Yesterday I wrote a blogpost about two-factor authentication using Duo, Active Directory, Duo Proxy Auth and Fortigate. I mentioned that…

By Manny Fernandez

February 20, 2019

Wired Captive Portal with Fortigate

Use Case: Customer wanted to have their devices that are authenticated to AD, egress to the Internet without needing to…

By Manny Fernandez

August 31, 2018

Upgrading My 2FA Foo

Today I updated any account I could find that uses 2FA. I chose Authy since it allows me to backup…

By Manny Fernandez

February 13, 2018
banner

Domain Password Audit Tool

[embed width="480" height="270"]http://youtu.be/nqrYBJI5aBI[/embed]Here is a great video by some folks @ Black Hills Information Security http://www.blackhillsinfosec.com

By Manny Fernandez

January 3, 2017

Cisco ACS 5.8 Automated Backups

  Today I attempted to configure our ACS server to backup to our new SFTP server. I deployed the SFTP…

By Manny Fernandez

October 25, 2016

Categories

Recent posts

  • Had a customer with over 200 static routes on... Full Story

  • This is a work in progress, I will be... Full Story

  • I have been playing with the free version of... Full Story