Fortinet black logo

Security Fabric Access Deployment Guide

Home FortiPAM 1.3.0 Security Fabric Access Deployment Guide
1.3.0
1.3.0
1.2.0
1.1.0

Configuring ZTNA access to FortiPAM

Configuring ZTNA access to FortiPAM

In Configuring the virtual IP associated with default proxy rule, we configured a VIP for the FortiPAM_Default ZTNA policy.

In this section, we enable ZTNA control and apply ZTNA tags for security posture check before a user logs in to the FortiPAM web interface from 10.100.88.20.

Once ZTNA control is set up on FortiPAM, you can only connect to FortiPAM and launch a secret from the endpoint PC with the allowed ZTNA tags. The endpoint PC must install FortiClient and connect to the same EMS server.

See ZTNA user control in the latest FortiPAM Administration Guide.

To configure ZTNA access to FortiPAM:
  1. Configuring FortiClient EMS connection
  2. Applying ZTNA tags to FortiPAM_Default policy
Previous
Next

Configuring ZTNA access to FortiPAM

In Configuring the virtual IP associated with default proxy rule, we configured a VIP for the FortiPAM_Default ZTNA policy.

In this section, we enable ZTNA control and apply ZTNA tags for security posture check before a user logs in to the FortiPAM web interface from 10.100.88.20.

Once ZTNA control is set up on FortiPAM, you can only connect to FortiPAM and launch a secret from the endpoint PC with the allowed ZTNA tags. The endpoint PC must install FortiClient and connect to the same EMS server.

See ZTNA user control in the latest FortiPAM Administration Guide.

To configure ZTNA access to FortiPAM:
  1. Configuring FortiClient EMS connection
  2. Applying ZTNA tags to FortiPAM_Default policy
Previous
Next