Fortinet Document Library

Version:

Version:

Version:


Table of Contents

Cookbook

Download PDF
Copy Link

Results

  1. From any PC in the internal network, attempt to browse the Internet. A log in screen will appear. Use the jpearson account to log in. After authentication, you can connect to the Internet.

    Note

    If a certificate error occurs during the authentication process, browse to a different site and re-attempt user authentication.

  2. Go to Monitor > Firewall User Monitor. The list shows jpearson is online.

  3. Right-click the account and select Deauthenticate.

  4. On the same PC, attempt to browse the Internet again. This time, log in using the akeating account.

  5. The Firewall User Monitor now shows akeating is online and you can access the Internet.

  6. From the AdminPC, attempt to browse the Internet. Log in using the tal-jamil account.

  7. The Firewall User Monitor now shows tal-jamil is online and you can access the Internet.

  8. If you attempt to log in from any other device using the tal-jamil account, the account will authenticate; however, you will not have Internet access.

  9. Go to FortiView >All Segments> Policies and select the 5 minutes view. You can see traffic hitting all three policies and that each user's traffic is flowing through the correct policy.

For further reading, check out Firewall policies in the FortiOS 6.0 Online Help.

Results

  1. From any PC in the internal network, attempt to browse the Internet. A log in screen will appear. Use the jpearson account to log in. After authentication, you can connect to the Internet.

    Note

    If a certificate error occurs during the authentication process, browse to a different site and re-attempt user authentication.

  2. Go to Monitor > Firewall User Monitor. The list shows jpearson is online.

  3. Right-click the account and select Deauthenticate.

  4. On the same PC, attempt to browse the Internet again. This time, log in using the akeating account.

  5. The Firewall User Monitor now shows akeating is online and you can access the Internet.

  6. From the AdminPC, attempt to browse the Internet. Log in using the tal-jamil account.

  7. The Firewall User Monitor now shows tal-jamil is online and you can access the Internet.

  8. If you attempt to log in from any other device using the tal-jamil account, the account will authenticate; however, you will not have Internet access.

  9. Go to FortiView >All Segments> Policies and select the 5 minutes view. You can see traffic hitting all three policies and that each user's traffic is flowing through the correct policy.

For further reading, check out Firewall policies in the FortiOS 6.0 Online Help.