This article provides instructions on how to list, monitor, or de-authenticate users currently authenticated on a FortiGate. This applies when users are authenticated with the following methods :
username: localuser (firewall_user_group) source: 10.160.0.94 - 10.160.0.94 username: user1 (firewall_user_group(ldap_server)) source: 10.160.0.93 - 10.160.0.93 |
1.2 . To reset the authentication, use the following CLI command :
FGT# diagnose firewall iprope resetauth
Warning: This command will reset all authenticated users. The command does not clear the sessions, this means that some users may still be able to access to resources until their session expires.
2. Procedure from the Web Based Manager (GUI), FortiOS 4.0MR2
The image below indicates the place where authenticated users can be monitored. Note the "trash bin" icon on the right of each user line which will allow an individual de-authentication. This view also provides information about the duration and the traffic volume generated by these sessions.
Related Articles
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.