Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
AllanKakuhama
New Contributor

Created on ‎05-10-2024 05:51 AM Edited on ‎05-10-2024 06:14 AM

ZTNA for Android

I have a requirement to use ZTNA (Zero Trust Network Access) on Android devices. The devices need to communicate with some printers on the corporate network. We have already set up the ZTNA Destinations, policies, and groups, but communication doesn't work on Android devices. However, when we test it on Windows, the communication functions properly. Could you let me know if ZTNA has any compatibility issues with the Android system?

255
0 Kudos
1 Solution
ozkanaltas
Contributor III

Created on ‎05-10-2024 07:27 AM Edited on ‎05-10-2024 07:31 AM

Hello @AllanKakuhama ,

 

Regarding this document, ZTNA features aren't supported on Android devices. 

 

https://www.fortinet.com/products/endpoint-security/forticlient#models-specs

 

https://docs.fortinet.com/document/forticlient/7.2.0/android-administration-guide/996706/features

 

 

 

image.png

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW

View solution in original post

If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
222
5 REPLIES 5
ozkanaltas
Contributor III

Created on ‎05-10-2024 07:27 AM Edited on ‎05-10-2024 07:31 AM

Hello @AllanKakuhama ,

 

Regarding this document, ZTNA features aren't supported on Android devices. 

 

https://www.fortinet.com/products/endpoint-security/forticlient#models-specs

 

https://docs.fortinet.com/document/forticlient/7.2.0/android-administration-guide/996706/features

 

 

 

image.png

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
223
Simon7
New Contributor
In response to ozkanaltas

Created on ‎05-14-2024 12:13 AM

Then why is it even possible to configure ZTNA for Android in EMS? And Android shows the ZTNA telemetry service as "running"?

138
0 Kudos
ozkanaltas
Contributor III
In response to Simon7

Created on ‎05-14-2024 12:38 AM Edited on ‎05-14-2024 12:38 AM

Hello @Simon7 ,

 

ZTNA telemetry service and ZTNA Remote access service are different things. 

 

With ZTNA telemetry service, you can follow your Android client status. And you can give a ztna tag to these Android clients. After that, you can use these tags on your firewall policy for conditional access (For example, ssl-vpn rules). 

 

But with ZTNA remote access service, you can access your internal resources without any ssl-vpn or local connection. Because of that, these are different things. 

If you have found a solution, please like and accept it to make it easily accessible to others.
NSE 4-5-6-7 OT Sec - ENT FW
If you have found a solution, please like and accept it to make it easily accessible to others.NSE 4-5-6-7 OT Sec - ENT FW
132
Simon7
New Contributor
In response to ozkanaltas

Created on ‎05-14-2024 01:10 AM

Great information, I did not understand it in that way. Much appreciated, thanks!

125
gllgeorgiev1
New Contributor

Created on ‎05-14-2024 04:55 AM

Just create MAC based policies.

107
0 Kudos
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.