Friday, 21 June 2013

Fortinet PPTP VPN with LDAP authentication

With a somewhat fundamental documentation failure, it looks like FortiGate PPTP VPN do not support CHAP/MSCHAPv2 when you are authenticating your user groups via LDAP. According to Fortinet - this is something they're aware of and works using PAP. When I spoke with them this morning, I advised this is unacceptable as a workaround because it disables encryption! I'll update this when I get a real solution.

Update: Official answer, it's not supported. http://kb.fortinet.com/kb/microsites/search.do?cmd=displayKC&docType=kc&externalId=10718&sliceId=1&docTypeID=DT_KCARTICLE_1_1&dialogID=51071690&stateId=0%200%2051073253 . I guess the solution is to use FortiClient (or Check Point...)

15 comments:

  1. As we work our way through Virtual Private Networks and how they can be used to guarantee that Internet security is never traded off,https://novavpn.com/blog/yify/ it's vital to recognize the contrast amongst VPNs and Proxy Servers.

    ReplyDelete
  2. Just admiring your work and wondering how you managed this blog so well. It’s so remarkable that I can't afford to not go through this valuable information whenever I surf the internet! click here

    ReplyDelete
  3. That appears to be excellent however i am still not too sure that I like it. At any rate will look far more into it and decide personally! prywatnoscwsieci

    ReplyDelete
  4. Assume paid for with the help of center, have discovered modern society; believed that protect on your playlists, you could potentially know most of the hassle; assumed ones step quit, much more is unable to drive; Imagine I would like adore, merely the caress. privatnostonline.com

    ReplyDelete
  5. i read a considerable measure of stuff and i found that the method for composing to clearifing that precisely need to say was great so i am inspired and ilike to come back again in future.. lemigliorivpn

    ReplyDelete
  6.  A portable fish finder is a good choice if you don't fish from the same ship all the time. gizlilikveguvenlik.com

    ReplyDelete
  7. Thanks for your assistance. With the PAP is working. But it is not secure.... Can you advise please about which secure VPN I can use to have a secure VPN. andy michael

    ReplyDelete
  8. The data you have posted is extremely valuable. The locales you have alluded was great. A debt of gratitude is in order for sharing... https://prywatnoscwsieci.pl

    ReplyDelete
  9. Great job for publishing such a beneficial web site. Your web log isn’t only useful but it is additionally really creative too. There tend to be not many people who can certainly write not so simple posts that artistically. Continue the nice writing https://diadiktiokaiasfalia.com

    ReplyDelete
  10. A very awesome blog post. We are really grateful for your blog post. You will find a lot of approaches after visiting your post. I was exactly searching for. Thanks for such post and please keep it up. Great work internetprivatsphare

    ReplyDelete
  11. Great article with excellent idea!Thank you for such a valuable article. I really appreciate for this great information.. mejoresvpn

    ReplyDelete
  12. The VPN Contivity switch that you are associated with has either logged your association off or the Switch is never again reacting, or a gadget that does not bolster IPSEC NAT Traversal is causing the association disappointment.
    express vpn doesn't work with netflix

    ReplyDelete