Matt Sherif
UltraNote: SAML SSL VPN settings changes
I spent the better part of 2 hours chasing this down, and it frustrated me. In my lab, I am running 7.0.2 and was rebuilding my SSL VPN...
top of page
Search
Matt Sherif
Oct 26, 20213 min read
Let's Encrypt Fun (NOT) - Yet another workaround
Note: this article expresses my opinions, however incorrect you may feel they are. They don't reflect the opinions of anyone else or any...
1,120 views0 comments
Matt Sherif
Oct 22, 20214 min read
Configuration Guide: FortiAuthenticator as Google WorkSpace SAML IdP
We've written a number of articles showing how to use Azure as your SAML IdP, and I've collaborated with my friend, Kim Frellsen on how...
1,260 views0 comments
Matt Sherif
Oct 21, 20212 min read
A Madman asks: Why aren't you reading the release notes?
With the release of new firmware, come new release notes. And while I try to remain technologically agnostic, I'm very aware that this...
84 views0 comments
Matt Sherif
Oct 15, 20212 min read
FSSO & Microsoft Updates, headaches, and solutions
I was contacted by a customer who ran into an issue deploying the FSSO collector agent on a member server, and they were having...
1,070 views0 comments
Matt Sherif
Oct 8, 202110 min read
A madman's thoughts: the NSE8 exam
As some of you may know, I underwent the NSE8 Practical Exam in June of 2021. After spending the better part of 2 years studying, passing...
1,530 views0 comments
Matt Sherif
Oct 2, 20214 min read
Let's Encrypt Fun (NOT) - a workaround
Note: this article expresses my opinions, however incorrect they may be. They don't reflect the opinions of anyone else. Update:...
3,672 views0 comments
Matt Sherif
Jul 30, 20211 min read
UltraNote: OSPF MTU when upgrading from 6.4 to 7.0.1
I am fortunate to have access to enough FortiGear that I can have a lab set up and not impact production. This allows me to test out...
952 views0 comments
Matt Sherif
Apr 13, 20213 min read
FortiOS Feature Highlight: 3rd party Dynamic DNS
When I was out for my run this morning, I found myself thinking about how we used to do things, and how far we've come as an industry,...
523 views0 comments
Matt Sherif
Apr 8, 20212 min read
FortiGate VLANs: tagged and untagged VLANs on the same physical interface
I have come across this question quite a bit lately, and thought it may be helpful to post a quick how to. In this post we'll take a look...
6,007 views0 comments
Matt Sherif
Apr 5, 20213 min read
Let's Talk about Security: Recent FBI-CISA Joint statement
As I am sure many of you have already seen the FBI-CISA Joint Advisory on Exploitation of Fortinet FortiOS Vulnerabilities some of you...
487 views0 comments
Matt Sherif
Apr 3, 20212 min read
UltraNote: APs don't reconnect after upgrading to 7.0
I have been running 7.0 on one of my lab units since the beta, but was strictly focus on the FortiOS feature set. With GA happening last...
852 views0 comments
Matt Sherif
Mar 31, 20211 min read
FortiOS Feature Highlight: API preview
If you have a more traditional networking/security model like me, you may have seen the wave of automation/devops/netops in a bit of a...
418 views
Matt Sherif
Mar 31, 20212 min read
FortiOS Feature Highlight: Let's Encrypt Certificate
FortiOS 7.0 has been released! Now, I know most of us are very cautious about this because in FortiOS .0 means ".NO you shall not upgrade...
6,079 views0 comments
Matt Sherif
Feb 11, 20214 min read
A madman's thoughts: Azure IP/Routing weirdness
Cloud, what an interesting place. It enables us to deploy workloads faster than ever, and it has also expanded the "attack surface" by a...
471 views0 comments
Matt Sherif
Feb 10, 20211 min read
Implementation Guide: FortiGate SSL VPN with Microsoft Azure SAML 2FA
As a follow up to a previous blog post, we walk through this configuration, and hopefully shed some more light on how this is doen. Thank...
16,667 views0 comments
Matt Sherif
Dec 14, 20203 min read
Follow up: Let's Encrypt with FortiGate - Now with VDOMs!!!
It's been well over a year since I wrote the original "Let's Encrypt with FortiGate", and while my mediocre python code proved popular,...
2,594 views0 comments
Matt Sherif
Nov 11, 20207 min read
A madman's thoughts: FortiGate to ASA VPN
I've done enough of these 'A madman's thoughts' for any of my older readers to see that these are usually a story of me overcoming a...
311 views0 comments
Matt Sherif
Oct 17, 20202 min read
SSL VPN Host Check for Registry Key
VPN, dial in, or whatever you want to call it. Since before the internet has been around, remote access to company networks has been...
1,521 views0 comments
Matt Sherif
Sep 4, 20202 min read
Troubleshooting a device that won't add to FortiManager
I was working in the lab this morning and wanting to build an ADVPN infrastructure with real FortiGates (VMware server is running out of...
106 views0 comments
bottom of page