Description | This article describes the configuration of the collector agent to record UPN-based User Logins in the 'Logon Users' List. |
Scope | Collector Agent. |
Solution |
Customers may have a specific requirement for their Wi-Fi setup, where users log in using their UPN names instead of the actual domain name. In such cases, there is a need to ensure that the Collector agent records these UPN-based users.
In this testing environment, the domain name is ott.tac.lab, and UPN is configured to be example.net. The objective is to ensure that when the FSSO Collector agent receives accounting requests with UPN names, it is possible to include those users under #show logon users on collector Agent. By default, it does not log users if it receives accounting requests that come in with UPN.
See the detail steps for configuration:
Once this part is configured, the Collector agent will start recording accounting requests with UPN. Note that the configuration is only supported when AD access mode is in advanced mode. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.