Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
cmaheu
Staff
Staff

Created on ‎08-12-2020 06:57 AM

Article Id 194071

Technical Note: FortiGate and Palo Alto Single Sign On stop working after upgrade

Description
FortiGate RSSO and Palo Alto Single Sign On (SSO) stop working after upgrading appliance. 

Scope
Version: 8.5 and above

Solution
Due to a change in functionality with the introduction of Logical Networks, a Network Access Policy match is required for the user-id to be sent to the firewall.

Create a Network Access Policy to match hosts and assign the appropriate network access.  For instructions, refer to section Network Access Policies of the Administration Guide in the Fortinet Document Library.

Note:  See related KB article below for a known limitation with Logical Networks.

For integration instructions, refer to the following reference manuals in the Fortinet Document Library:

Related Articles

Technical Note: User ID information not sent to Palo Alto using logical networks

Labels:
726
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.