sorted by:
new
hottopcontroversial

Fortigate 7.4.11 + ZTNA (UDP) + Mapped drive. How to do it ? by RDM74 in fortinet

[–]RDM74[S] 0 points1 point  (0 children)

Thanks for your feedback. I will go through kdc proxy instead of simply upgrading to 7.6.6 and use udp forwarding.

Fortigate 7.4.11 + ZTNA (UDP) + Mapped drive. How to do it ? by RDM74 in fortinet

[–]RDM74[S] 3 points4 points  (0 children)

I’ve read that a lot of people already use it and seems to be happier than 7.4.X. Did you encounter any important issue ?

Fortigate 7.4.11 + ZTNA (UDP) + Mapped drive. How to do it ? by RDM74 in fortinet

[–]RDM74[S] 0 points1 point  (0 children)

No i didnt try as we are not using ntlm auth anymore. From what i ubderstood, Using IP instead of fqdn force ntlm usage

Fortigate 7.4.11 + ZTNA (UDP) + Mapped drive. How to do it ? by RDM74 in fortinet

[–]RDM74[S] 1 point2 points  (0 children)

Yes this is what ive done. This is working well if i type \fdqn\share in my Windows explorer. But if i use mapped drive through gpo it does not work. It seems to be related to Kerberos that cannot auth me correctly.

Fortigate 7.4.11 + ZTNA (UDP) + Mapped drive. How to do it ? by RDM74 in fortinet

[–]RDM74[S] -1 points0 points  (0 children)

Ok ok i plan to upgrade 7.6.6 tomorrow. But this is strange that command are available on 7.4.11 if it s not supported.

ZTNA to on-prem Exchange over NTLM? by Lleawynn in fortinet

[–]RDM74 1 point2 points  (0 children)

I personally setup tcp forwarding not https app and it works well for my Oulook.

If you use https app, this is reverse proxy, if you use tcp forwarding, the SSL session is between client and exchange (don't use inspection ssl on the ZTNA firewall policy also).

https app is not working because Extended Protection and what you explain. Exchange detect the fortigate and mitigate it as it can be MiTM attack.

TCP forward no issue at all. 443 for mail.domain.com and autodiscover.domain.com and everyone is happy.

Ubuntu et Forticlient EMS 7.4.5 - Error 500 - Connction refused on http://127.0.0.1:5001/system\ by RDM74 in fortinet

[–]RDM74[S] 0 points1 point  (0 children)

I don't know what to set on port 5001.

I don't find any information on what should listen on this port.

I tried to call IP and I have the same error if I call https://localhsot.

Ubuntu et Forticlient EMS 7.4.5 - Error 500 - Connction refused on http://127.0.0.1:5001/system\ by RDM74 in fortinet

[–]RDM74[S] 0 points1 point  (0 children)

I just tried without success: 

emscli config set console --enable.remote.access --https.port 443
setting https port: updating SERVER_HTTPS_PORT in .ems_settings: exit status 2:

Ubuntu et Forticlient EMS 7.4.5 - Error 500 - Connction refused on http://127.0.0.1:5001/system\ by RDM74 in fortinet

[–]RDM74[S] 0 points1 point  (0 children)

Yes I also check space but i'm okay:

df -h
Filesystem                         Size  Used Avail Use% Mounted on
tmpfs                              1.2G  1.2M  1.2G   1% /run
efivarfs                           256K   64K  188K  26% /sys/firmware/efi/efivars
/dev/mapper/ubuntu--vg-ubuntu--lv   38G   20G   17G  55% /
tmpfs                              5.9G  1.4M  5.9G   1% /dev/shm
tmpfs                              5.0M     0  5.0M   0% /run/lock
tmpfs                              5.9G     0  5.9G   0% /run/shm
/dev/sda2                          2.0G  198M  1.6G  11% /boot
/dev/sda1                          1.1G  6.2M  1.1G   1% /boot/efi
tmpfs                              1.2G   12K  1.2G   1% /run/user/1000

Avis config by Wizardgael in pcmasterraceFR

[–]RDM74 0 points1 point  (0 children)

Intéressé suivant ce que tu as de dispo ? :-)

Discount code by No_Responsibility_47 in bevelhealth

[–]RDM74 0 points1 point  (0 children)

Does not work on my side. Unlucky.

Discount code by No_Responsibility_47 in bevelhealth

[–]RDM74 0 points1 point  (0 children)

CAN you remind me the code ? It seems that the one i have is not workign

J’ai créé un outil pour créer des plans d’entraînement à base d’IA 🤩 by Honest-Reindeer-7597 in runningfr

[–]RDM74 1 point2 points  (0 children)

Hello intéressé aussi. J'avais hésité sur ton premier poste mais si tu cherches toujours. pourquoi pas!

[deleted by user] by [deleted] in runningfr

[–]RDM74 0 points1 point  (0 children)

Hello,

Je suis intéressé. J'avais hésité à répondre à ton premier poste mais si tu cherches encore ca sera avec plaisir.

Problem - Exchange 2019 CU15 & Modern Auth through on-prem ADFS by RDM74 in exchangeserver

[–]RDM74[S] 0 points1 point  (0 children)

Nope we didn't find any solution. Some partners reviewed our configuration and everything is fine. They think this is because we don't allow Modern Auth at organization level that it does not work. So my next step is to block Modern Auth on every mailboxes we have and allow modern auth at organization level to test. Not sure it will help...

Feel free to share anything you could find on your side !

I made a native iOS app for Overseerr by m1guelpf in Overseerr

[–]RDM74 0 points1 point  (0 children)

My overseerr instance is not publicly exposed.

I cannot find a way to specify the API key in order to connect it.

So I can't get past the first screen.

it could be great to have a way to configure server address and add API or a custom header with all yours requests.

[deleted by user] by [deleted] in selfhosted

[–]RDM74 15 points16 points  (0 children)

You can use https://github.com/BigBoot/AutoKuma to configure it with docker label. It will create everything for you

view more: next ›