Fortinet black logo

Architecture Guide

Home FortiSASE Architecture Guide

SIA for agentless remote users

SIA for agentless remote users

SIA for agentless remote users involves setting up a web browser, or of a browser-based device using a proxy auto-configuration (PAC) file to use the FortiSASE SWG service as an explicit web proxy. The web browser will redirect HTTP and HTTPS traffic to the SWG, which secures user web traffic by implementing SWG security policies. All other non-web traffic will bypass FortiSASE and will be forwarded to the internet directly.

You can achieve authentication for users in this use case by configuring the authentication source as Active Directory/LDAP or RADIUS or as a SAML identity provider.

Initial configuration of the proxy settings for web browsers can be automated using Windows Group Policy Objects (GPOs) or Microsoft System Center Configuration Manager (SCCM).

A typical topology for deploying this example design is as follows:

Previous
Next

SIA for agentless remote users

SIA for agentless remote users involves setting up a web browser, or of a browser-based device using a proxy auto-configuration (PAC) file to use the FortiSASE SWG service as an explicit web proxy. The web browser will redirect HTTP and HTTPS traffic to the SWG, which secures user web traffic by implementing SWG security policies. All other non-web traffic will bypass FortiSASE and will be forwarded to the internet directly.

You can achieve authentication for users in this use case by configuring the authentication source as Active Directory/LDAP or RADIUS or as a SAML identity provider.

Initial configuration of the proxy settings for web browsers can be automated using Windows Group Policy Objects (GPOs) or Microsoft System Center Configuration Manager (SCCM).

A typical topology for deploying this example design is as follows:

Previous
Next