Description
Solution
By default, if an Admin profile is created that is used for per VDOM access, the login will only be permitted if the interface (that the user try to log into) belongs to one of the permitted VDOMs in the profile.
For example, user Peter belongs to a profile allow access to RED VDOM only.
If user Peter access to Port 1 IP which belongs to root VDOM, the user will not be able to access as the Port 1 is not part of RED VDOM.
This is expected behavior for FortiGate.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.