FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Andy_G
Staff
Staff
Article Id 190914
Description
When client computers running Mac OS X (10.6.X and higher) wake up from sleep mode, the user must authenticate again to be able to access external resources. If user does not re-authenticate, the user will maintain access to internal web sites, but will be unable to access any external resources. 

This issue is caused by Mac OS X not providing sufficient information to the FSAE. This results in the FortiGate blocking access to the user because they cannot be authenticated.

Scope

Mac OS X (10.6.X and higher)


Solution
The security settings on client computer(s) must be configured to require that a username and password be entered when exiting sleep mode or screen saver. With this feature enabled in Mac OS X, the FortiGate will receive the authentication information it requires to authenticate the user and allow them access.

Individual users may be able to disable the password requirement by changing their security settings. This will cause the above issue to reoccur. The user will have to reauthenticate with the FortiGate by logging out, restarting their machine, or following the solution listed above.



Instructions to enable wake-up authentication when exiting sleep mode:

1. Click on Apple > System Preferences > Security

agodwin_FD32237_FD33237_b.jpg

2. Under the General tab, select Require password immediately after sleep or screen saver begins.

agodwin_FD32237_FD33237_a.jpg

The computer will now request a username and password when exiting sleep mode, allowing it to reconnect to external resources through the FortiGate.

Contributors