This article describes how FortiProxy handles multiple users accessing resources from the same source IP in the Azure VDI environment.
Scope
FortiProxy.
Solution
FortiProxy handles multiple users accessing resources from the same source IP address in an Azure VDI environment:
- SAML Authentication: FortiProxy supports SAML authentication, enabling users to authenticate with an Identity Provider (IdP) like FortiAuthenticator. Each user receives unique credentials from the IDP, ensuring individual user identification even if they share the same source IP address.
- Session-Based Authentication: FortiProxy enforces session-based authentication, requiring users to authenticate anew for each session. This ensures that each user, regardless of sharing an IP address, undergoes individual authentication for secure access.
- User-Based Policies: FortiProxy applies user-based policies to differentiate users based on their credentials, independent of their source IP address. This capability allows for precise control over user access rights and permissions. Each user’s authentication is handled independently, maintaining secure access control.