Threat Post

FortiGate VPN Default Config Allows MitM Attacks

The client’s default configuration for SSL-VPN has a certificate issue, researchers said. Default configurations of Fortinet’s FortiGate VPN appliance could open organizations to man-in-the-middle ...
The Hacker News

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability

Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication ...
Ars Technica

Fortigate to CISCO IPSEC VPN

Thought I'd start a new thread rather than hijack the other one. We're switching to a new MPLS VPN provider with 4 sites and a central colocation facility which tails into the internet. Each of the ...
Ars Technica

Fortigate SSL VPN

I've wasted away most of the day trying to get this working. We currently use SSL VPN for remote users. It uses ldap to authenticate the users in AD. In preparation of an AD migration we want a test ...