question

FortiSASE-Man avatar image
1 Like"
FortiSASE-Man asked

FortiSase and local Active Directory integration

Can I use local Active Directory integration when using FortiSASE? And do you have any documentation for the configuration of it?

FortiSASEaadactive directoryazure active directory
10 |600

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

1 Answer

·
FortiSASE-Man avatar image
1 Like"
FortiSASE-Man answered

It is recommended to use Azure Active Directory (AAD) instead of on premise Active Directory (AD). When using AD, the customer would need to expose the AD to the Internet and lock it down to FortiSASE IPs documented at:


https://docs.fortinet.com/document/fortisase/latest/administration-guide/751044/appendix-a-ingress-and-egress-ip-addresses


We recommend using the IP address feed, as the IP addresses are subject to change.


Documentation on User Authentication integrations supported by FortiSASE can be found here:


https://docs.fortinet.com/product/fortisase/22.3

&

https://docs.fortinet.com/document/fortisase/22.3.10/administration-guide/623391/authentication-sources-and-access

&

https://docs.fortinet.com/document/fortisase/22.3.10/administration-guide/316358/configuring-fortisase-with-an-ldap-server-for-remote-user-authentication-in-swg-mode

10 |600

Up to 8 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Write an Answer

Hint: Notify or tag a user in this post by typing @username.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MiB each and 10.0 MiB total.

Welcome to FortiAnswers

FortiAnswers is the space dedicated to FortiSASE and FortiOS questions and suggestions.

  • Please review the Community guidelines
  • If you are a moderator, please refer to the Moderation guidelines
  • If something in the above guidelines is unclear, please post your question to the Community Feedback space or the Moderators' space