| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <fac273f8cd4cde443b1f9fdd047d208e@teo-en-ming.com> Date: Tue, 25 Aug 2020 22:07:03 +0800 From: Turritopsis Dohrnii Teo En Ming <ceo@...-en-ming.com> To: linux-kernel@...r.kernel.org Cc: ceo@...-en-ming-corp.com Subject: Configuring Fortigate 60D Firewall SSL VPN with FortiToken 2FA (Advanced Configuration) Subject: Configuring Fortigate 60D Firewall SSL VPN with FortiToken 2FA (Advanced Configuration) Author: Mr. Turritopsis Dohrnii Teo En Ming Country: Singapore Date: 25 August 2020 Tuesday Singapore Time Type of Publication: PDF Manual Document Version: 20200825.01 INTRODUCTION ============ Fortigate firewall appliances are based on Linux Kernel and open source software. In this PDF manual, I will show you how to: 1. Install Windows Server 2019 Standard as a virtual machine in Linux KVM/QEMU Hypervisor 2. Install Active Directory Domain Services role/feature 3. Promote Windows Server 2019 Standard to Domain Controller 4. Create organizational units in Active Directory Users and Computers 5. Create Active Directory user 6. Create security group for SSL VPN users 7. Assign Active Directory user to the SSL VPN Users security group 8. Add LDAP server (Microsoft Active Directory/LDAP integration) in Fortigate 60D firewall 9. Add user group from LDAP server in Fortigate 60D firewall (remember to add members of the group as well) 10. Add LDAP user in Fortigate 60D firewall 11. Configure SSL VPN tunnel in Fortigate 60D firewall 12. Configure two firewall security policies to allow VPN users to access the (a) internal network and the (b) internet 13. Assign FortiToken to LDAP user in Fortigate 60D firewall and turn on 2nd Factor Authentication (2FA) 14. Create VPN tunnel in FortiClient VPN on your Android phone and connect to Fortigate 60D SSL VPN tunnel successfully 15. FortiClient VPN will now ask you for the token code Redundant Google Drive download links for my PDF manual ======================================================= [1] https://drive.google.com/file/d/1uhRWr8OXerCN30OeWhgFP8rG_4NlkHsa/view?usp=sharing [2] https://drive.google.com/file/d/1mJ5m7zlPFLXuXfKgfLcq_nAGP1jC2QlC/view?usp=sharing [3] https://drive.google.com/file/d/1ZU7aphOXIG3q8-1g6GSRXX2hXgG7AibU/view?usp=sharing [4] https://drive.google.com/file/d/1IKVeGJZ5HPR6hAsRwxTHfABBLjKz9uyl/view?usp=sharing [5] https://drive.google.com/file/d/1nwC7VlA3p0U2apmsOlH6mADrX84wxTNM/view?usp=sharing [6] https://drive.google.com/file/d/1mXT3TdX8dtCDA1YeoX7oRxk3mSgcoN6P/view?usp=sharing -----BEGIN EMAIL SIGNATURE----- The Gospel for all Targeted Individuals (TIs): [The New York Times] Microwave Weapons Are Prime Suspect in Ills of U.S. Embassy Workers Link: https://www.nytimes.com/2018/09/01/science/sonic-attack-cuba-microwave.html ******************************************************************************************** Singaporean Mr. Turritopsis Dohrnii Teo En Ming's Academic Qualifications as at 14 Feb 2019 and refugee seeking attempts at the United Nations Refugee Agency Bangkok (21 Mar 2017), in Taiwan (5 Aug 2019) and Australia (25 Dec 2019 to 9 Jan 2020): [1] https://tdtemcerts.wordpress.com/ [2] https://tdtemcerts.blogspot.sg/ [3] https://www.scribd.com/user/270125049/Teo-En-Ming -----END EMAIL SIGNATURE-----
Powered by blists - more mailing lists