Видео

Anybody else have the issue when using the FQDN instead of the IP, that the reply response from the FortiGate is empty? DNS seems to resolve to the right IP. Entra succeeds when using the IP in the application config, but when using a DNS address, it seems to fail after authenticating due to a empty response.

When I was notice a 48 mins video about this theme, I said "sure it is so boring this video", but when I finish, I immediately pushed that suscribe and "I like" button. Thanks a lot for your video and explanation "una joyita de video"

Thank you very much for this video. I had an issue with the step where I had to setup the custom "username" claim attribute on the Azure side and the documentation and other tutorials don't clearly state what to do there.

thanks bro

Where did you get gateway address to put in browser and Forticlient

Dude thank you! One thing to note, is that you dont need the quotes anymore on 7.2.8 firmware.

Highly recommend 1.5x playback speed on this video.

Hi. I have a problem with the client . Log show a problem with connect to server error 6500

Thank you for this video it was extremely informative

Very nice explanation

Thank you for sharing this tip Dan, this makes policy configuration clear & clutter-free.

Thank you for the video

Thank you Dan! I was able to setup the same within 1.5 hours thanks to your vid. If anyone cares: If using FIDO2 key (passwordless), you have to select the option in the Forticlient VPN profile to authenticate using the browser.

can i use self signed certificate for azure saml ?

Great Content...

Is this websites and urlsis trusted?

Is this websites and url is trusted

what should be the format if we are uploading ips from a notepad file , i have uploaded it to my drive and connected , its connected but on show entries its showing errors !!

Thanks. How you can implement this with SSLVPN? Now that so much vulnerabilities with SSL VPN and people scanning the internet, with port 443 opened from outside. A use case will be to use this for SSL VPN. It will be nice to have some information about it :). Talos link doesnt work. I dont find any IP block list. May be they have changed it.

It's great tutorial. by the way, I found an error "Invalid HTTP request" when I tested. Could you advise, Dan? Thank you!

At about ruclips.net/video/nDH2wvveLrI/видео.html, you copied the FQDN but where should I get the FQDN in Fortigate from? Ive been trying to set up this configuration form yesterday but still stutcked on the way. Please help!! Kento from Japan.

Great Video! Thanks for sharing!

Well done video tutorial, Kudos. You didnt mention url haus, does it not need a firewall policy?

Thank you very much for your video. Regards

Thank you for creating this content Dan. Great video and instructions. It was incredibly helpful.

Do you need separate fortigate ssl vpn enterprise apps for separate fortigate firewalls?

Great vid. My free Azure account would not allow me to add groups to the FortigateSSL enterprise app thingy in Azure, only users. But, you could kick it a bit on the login and could evenutally get to the SSL portal. Thanks for the useful video and info. Make more vids!

Thanks

I'm studying for my SC-900 exam and I came across this setting and it just confused me as to why it's default... I'm glad I got this video, now I know it's weird as I thought.

Fantastic! one question: There seems to be a limitation on 7.0.9 to add multiple saml server to a group. Is there a way around this without recreating the same firewall policies for different saml servers

Best content in the subject for months in the subject I have come across. Thank you

Fantastic video thank you! Great note about being able to leverage this to examine and compare malware hash for internal traffic across VLANs. I've always wondered if my network would slow if I routed VLANs on the firewall rather than our core switch...

great sharing.

Good morning Dan, really nice video and well explained. I was just wondering, in the ssl settings in the Authentication/ Portal Mapping if i create a mapping to a new portal for azure and I also have a mapping for a group of local user of fw to connect to the portal full-access for example. When my users with local account will connect to the fw via forticlient, will they get the azure windows also ? I would like to keep these users connecting without the azure portal but also that some groups gets azure windows.

thank you so much! I have an End of Sale / End of support Fortigate in my home network and fortunately with this video I could take advantage filtering malicious traffic withous official fortinet license, thats great! thanks and regards from Costa Rica!

noice!

Hey bro. Since fortigate use FortiGuard to provide realtime "security blocks" while using ISDBs for example, WHY we should use an IP address Threat Feed Integration?

Great video. Really enjoyed how you showed the whole process including the small issues you ran into.

I've been pouring over the config documents from both Azure and Fortigate side for about a week preparing to get it done this week. Always helpful to see someone actually do it though and I'm really happy you left the troubleshooting in there. Invaluable! Liked and subscribed sir, thank you!

not working here, my vpn portal do not redirect do microsoft, if a access the saml address I have remote/saml/login invalid http request

great video. really informative .well organized and detailed. thanks for sharing. would like to see more upload from you.

Hi Dan, this video is very helpful, but I missed the MFA part. If I am not wrong, you didn't configure it. I can see that the systen asked username and password, but not a second factor (multi-factor or two-factor) authentication. No token or OTP of any sort.

Dan, Do you provide consulting services?

Thank You for sharing. It was informative.

Hi Dan, My forinet is running in AWS and I want to connect with Azure same like this video, Do I need to allow any ports in Azure and AWS vice versa?

Can this be done without running a domain for our SSL Cert? I.e, running a cert to our public IP? We have no internal DNS so setting this up would be difficult for FQDN.

Thanks Dan. Good explanation. This helps.

Hi, does anyone know if you can apply Azure 2FA like this to authenticate against FG SSL VPN?

Great content Dan. For my understanding, I wonder could someone give me the highlevel sequence of events here, in terms if the token / authentication flow mechanism?

How can I have redundancy with SAML?