Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
fquerzo_FTNT
Staff
Staff

Created on ‎11-26-2015 05:36 AM Edited on ‎03-24-2022 11:00 AM By Anonymous

Article Id 190430

Technical Note: SSL VPN portal - Connection tool widget configuration

Description

The Connection tool widget in SSL VPN web portal can be modified specifying applications or protocols that users can use to connect to a VPN destination.

This FortiOS v5.0 feature is not available in v5.2.

In v5.2 all standard applications/protocols are available in SSL VPN web portal "Connection tool widget", user access can be restricted via the firewall policy, specifying the service.


Solution

CLI Configuration

FortiOS v5.0
config vpn ssl web portal
edit full-access
config widget
edit 3
set allow-apps ftp rdp smb ssh vnc web
end
end
end

On FortiOS v5.2 restrict user access via service in firewall policy
config firewall policy
edit <SSLVPN_policy_ID>
set service "FTP" "SMB" "RDP" "SSH" "VNC" "HTTPS" "HTTP"
end
Labels:
1062
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.