Presentation is loading. Please wait.

Presentation is loading. Please wait.

Agenda Create certificates for the GlobalProtect Portal, internal gateway, and external gateway. Attach certificates to a SSL-TLS Service Profile. Configure.

Published byToby Spencer Modified over 5 years ago

Similar presentations

Presentation on theme: "Agenda Create certificates for the GlobalProtect Portal, internal gateway, and external gateway. Attach certificates to a SSL-TLS Service Profile. Configure."— Presentation transcript:

1 Agenda Create certificates for the GlobalProtect Portal, internal gateway, and external gateway. Attach certificates to a SSL-TLS Service Profile. Configure the Server Profile and Authentication Profile to be used when authenticating users. Create and configure the tunnel interface to be used with the external gateway. Configure the internal gateway, external gateway, and portal. Host the GlobalProtect agent on the portal for download. Create a No-NAT policy rule to ensure that portal traffic is not subjected to network address translation. Test the external gateway and internal gateway.

2 Prerequisite for Global Protect
Self Signed Certificates generated on Firewall for SSL portal Must have user created locally or from AD

3 Create a VPN zone & Enable user Identification
Network>zone>add

4 Create a VPN tunnel interface
Network>interface>add>Tunnel>Add

5 Create SSL/TLS Profile to attach Self-singed Certificate

6 Create Global Protect Gateway
Network>Globalprotect>Gateways>Add

7 Click on authentication Tab & attach SSL/TLS service profile & LOCAL_AUTH_PROFILE
Introduction To Fortinet

8 Under AGENT tab attach tunnel interface, enable IPSec security, define POOL of IP address & the server IP address to communicate with Introduction To Fortinet

9 Introduction To Fortinet
Again Click On Ok

10 Network>GlobalProtect>Portal>Add
Now Create a portal, We need a portal to connect through username & password, and to download client. Network>GlobalProtect>Portal>Add Introduction To Fortinet

11 Introduction To Fortinet
Again press Ok , Ok

12 Now Create Security Policy Rule to communicate from VPN Tunnel to LAN Zone Server.
Introduction To Fortinet

13 Now Global Protect Client Software should be uploaded on firewall
Device>GlobalProtect Client>Upload Note:- Client software will not get uploaded because of no license Introduction To Fortinet

Download ppt "Agenda Create certificates for the GlobalProtect Portal, internal gateway, and external gateway. Attach certificates to a SSL-TLS Service Profile. Configure."

Similar presentations

1 Copyright © 2005, Cisco Systems, Inc. All rights reserved. Applying Security Principles to Networking Applications Mark Enright Dec.

1 Copyright © 2005, Cisco Systems, Inc. All rights reserved. Applying Security Principles to Networking Applications Mark Enright Dec.
Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.

Information Security 1 Information Security: Security Tools Jeffy Mwakalinga.
1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.

1 Objectives Configure Network Access Services in Windows Server 2008 RADIUS 1.
MCDST 70-271: Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.

MCDST : Supporting Users and Troubleshooting a Microsoft Windows XP Operating System Chapter 14: Troubleshooting Remote Connections.
Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.

Hands-On Microsoft Windows Server 2003 Administration Chapter 11 Administering Remote Access Services.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Twelve Implementing Terminal.
Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.

Installing and Maintaining ISA Server. Planning an ISA Server Deployment Understand the current network infrastructure Review company security policies.
1 Enabling Secure Internet Access with ISA Server.

1 Enabling Secure Internet Access with ISA Server.
NetComm Wireless VPN Functionality Feature Spotlight.

NetComm Wireless VPN Functionality Feature Spotlight.
© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 10 – Implementing the Cisco Adaptive Security.

© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 10 – Implementing the Cisco Adaptive Security.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod3_L7 1 Network Security 2 Module 6 – Configure Remote Access VPN.

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod3_L7 1 Network Security 2 Module 6 – Configure Remote Access VPN.
4-1 PSe_4Konf.503 EAGLE Getting Started and Configuration.

4-1 PSe_4Konf.503 EAGLE Getting Started and Configuration.
Course 201 – Administration, Content Inspection and SSL VPN

Course 201 – Administration, Content Inspection and SSL VPN
ASA 5505 SSL VPN Joe Cicero Northeast Wisconsin Technical College.

ASA 5505 SSL VPN Joe Cicero Northeast Wisconsin Technical College.
1 ISA Server 2004 Installation & Configuration Overview By Nicholas Quinn.

1 ISA Server 2004 Installation & Configuration Overview By Nicholas Quinn.
Scenario & Hands-on 7-1 VPN Configuration-PPTP

Scenario & Hands-on 7-1 VPN Configuration-PPTP
Chapter 20: Getting from the Office to the Road: VPNs BAI617.

Chapter 20: Getting from the Office to the Road: VPNs BAI617.
© 2005,2006 NeoAccel Inc. Partners Presentation SSL VPN-Plus 2.0 Quick Start Guide.

© 2005,2006 NeoAccel Inc. Partners Presentation SSL VPN-Plus 2.0 Quick Start Guide.
Module 8: Configuring Virtual Private Network Access for Remote Clients and Networks.

Module 8: Configuring Virtual Private Network Access for Remote Clients and Networks.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod9_L8 1 Network Security 2 Module 6 – Configure Remote Access VPN.

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod9_L8 1 Network Security 2 Module 6 – Configure Remote Access VPN.

Similar presentations

Ads by Google