Configuring ssl vpn user groups – Fortinet FortiGate v3.0 MR7 User Manual
Page 43
Users/peers and user groups
User groups
FortiOS v3.0 MR7 User Authentication User Guide
01-30007-0347-20080828
43
Figure 19: User group configuration - Directory Service
Configuring SSL VPN user groups
For detailed instructions about how to configure SSL VPN web-only mode or
tunnel mode operation, see the
Name
Type or enter the name of the user group.
Type
Select the user group type:
Firewall
Select this group in any firewall policy that
requires Firewall authentication.
Directory Service
Select this group in any firewall policy that
requires Directory Service authentication.
SSL VPN
Select this group in any firewall policy with
Action set to SSL VPN.
Not available in Transparent mode.
Protection Profile
Available only if Type is Firewall or Directory Service.
Select a protection profile for this user group from the list. To
create a new protection profile, select Create New from this list.
Enter the appropriate information and select OK.
Available
Users/Groups or
Available Members*
The list of Local users, RADIUS servers, LDAP servers,
TACACS+ servers, Directory Service users/user groups, or PKI
users that can be added to the user group. To add a member to
this list, select the name and then select the Right Arrow.
* Available Members if user group type is Directory Service.
Members
The list of Local users, RADIUS servers, LDAP servers,
TACACS+ servers, Directory Service users/user groups, or PKI
users that belong to the user group. To remove a member, select
the name and then select the Left Arrow.
FortiGuard Web
Filtering Override
Available only if Type is Firewall or Directory Service.
Configure Web Filtering override capabilities for this group.
SSL-VPN User Group
Options
Available only if Type is SSL VPN.
Right Arrow
Left Arrow
Expand Arrow