FortiSIEM
FortiSIEM provides Security Information and Event Management (SIEM) and User and Entity Behavior Analytics (UEBA)
yujames
Staff
Staff
Article Id 191626

Description

This document will show how to fix DUO 2FA plugin on 5.2.1.  This documentation does not walk through DUO Authentication configuration.  Please reference the FortiSIEM User Guide on how to configure DUO 2F Authentication
The reason why this is here is because there has been a security fix on 5.2.1 version of FortiSIEM, unfortunately this causes a connection issue with https outbound to certain sites.
 


Scope
Version: 5.2.1

Solution

  1. ssh into the supervisor as root
  2. Edit /etc/httpd/conf/httpd.conf
  3. Find: Header always set Content-Security-Policy "default-src 'self'; img-src 'self' data: https://maps.googleapis.com https://maps.gstatic.com; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';"
  4. Modify to: Header always set Content-Security-Policy "default-src 'self' https://*.duosecurity.com; img-src 'self' data: https://maps.googleapis.com https://maps.gstatic.com; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';"
  5. Save the configuration change
  6. Restart httpd: service httpd restart
Contributors