Hi we have fortigate 200e and 25 users forticlient license with vpn\ztna. We want to use only vpn feature. How do we do that?
If you only want VPN you don’t need any licenses.
If you want managed clients install EMS.
Even if all you will use is VPN, licenses with EMS does have some value over the free vpn client. You can setup profiles and deployment packages to manage the client installs. You also unlock some paid only features like vpn login before windows and things like always up. To do that you need to setup an ems server.
You can buy VPN/ZTNA license. There are 2 types: cloud and on-prem. Cloud approximately two times more expensive, but yo don’t need to install on-prem server for that. On-prem version must be installed on your local server. Since version 7.4 it is Linux based server.
There is a web app for the vpn now, so I’ve been told. Not tested it out but saves the hassle for installs and updates
“If you only want VPN you don’t need any licenses.”
Except for the part where you will get no support from Fortinet TAC/ETAC unless the FCT logs show it is managed by an actively licensed EMS. Other than that, no you do not need EMS license for FCT.
That license has EMS cloud i believe i can use that?
Received cloud license, added to assets on forti care account and now able to access forti EMS cloud. Thanks
The SSL web portal or something different? Fortinet is actively trying to move away from SSL in favor of ZTNA. IPsec VPN will stick around and that requires a client (so does ZTNA). With all the SSL vulnerabilities over the last couple of years I wouldn’t recommend using the SSL Web Portal.