From 1a9806e9e25a5aaf41bc619a362c3442df519a7a Mon Sep 17 00:00:00 2001 From: John Poland Date: Tue, 24 Feb 2026 20:32:07 -0500 Subject: [PATCH] fortigate Tue Feb 24 08:32:07 PM EST 2026 --- configs/fortigate/vdom_scsd/firewall.cfg | 4 +- configs/fortigate/vdom_scsd/user.cfg | 72 ++++-------------------- 2 files changed, 14 insertions(+), 62 deletions(-) diff --git a/configs/fortigate/vdom_scsd/firewall.cfg b/configs/fortigate/vdom_scsd/firewall.cfg index e34d627..d0fdb0c 100644 --- a/configs/fortigate/vdom_scsd/firewall.cfg +++ b/configs/fortigate/vdom_scsd/firewall.cfg @@ -2899,7 +2899,7 @@ config firewall addrgrp set color 28 next edit "SchoolTool_Cloud_Internal" - set member "21JumpSt" "DataTools" "Fileserver03" "Nighttime_Inside" "Tableau" "DC01_A" "DC01_B" "DC01_C" "HVDC02" "HVDC03_A" "HVDC03_B" "DocHolliday" "SchoolTool webjs" "Elastic" + set member "21JumpSt" "DataTools" "Fileserver03" "Nighttime_Inside" "Tableau" "DC01_A" "DC01_B" "DC01_C" "HVDC03_A" "HVDC03_B" "DocHolliday" "SchoolTool webjs" "Elastic" set comment "Access for SchoolTool Cloud" next edit "Nimble_Inside_Grp" @@ -2951,7 +2951,7 @@ config firewall addrgrp set member "411app" "411sql" "411App_WebPage" next edit "Domain_Controller_Group" - set member "DC01_A" "DC01_B" "DC01_C" "HVDC02" "HVDC03_A" "HVDC03_B" + set member "DC01_A" "DC01_B" "DC01_C" "HVDC03_A" "HVDC03_B" set color 14 next edit "City_CGRs_Group" diff --git a/configs/fortigate/vdom_scsd/user.cfg b/configs/fortigate/vdom_scsd/user.cfg index 516b429..e7e1484 100644 --- a/configs/fortigate/vdom_scsd/user.cfg +++ b/configs/fortigate/vdom_scsd/user.cfg @@ -5513,204 +5513,156 @@ config user group edit "SSO_Guest_Users" next edit "SSL_VPN_Full_Access" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=VPN_Fortinet,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=VPN_Fortinet,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=VPN_Fortinet,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_Web_Servers_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=Server_Local_Admin_DistrictWebsite,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=Server_Local_Admin_DistrictWebsite,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=Server_Local_Admin_DistrictWebsite,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_SchoolTool_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=Server_Local_Admin_SchoolTool,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=Server_Local_Admin_SchoolTool,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=Server_Local_Admin_SchoolTool,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_DayAuto_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=Server_Local_Admin_DayAutomation,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=Server_Local_Admin_DayAutomation,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=Server_Local_Admin_DayAutomation,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_Security_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=Server_Local_Admin_Security,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=Server_Local_Admin_Security,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=Server_Local_Admin_Security,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_Hyperion_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=VPN_Hyperion,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=VPN_Hyperion,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=VPN_Hyperion,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_Peoplesoft_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=VPN_Peoplesoft,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=VPN_Peoplesoft,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=VPN_Peoplesoft,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_WebCRD_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=Server_Local_Admin_WebCRD,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=Server_Local_Admin_WebCRD,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=Server_Local_Admin_WebCRD,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_Access411_Group" - set member "HVDC02.scsd.ad" "HVDC03.scsd.ad" "DC01.scsd.ad" + set member "HVDC03.scsd.ad" "DC01.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=VPN_Access_Access411,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=VPN_Access_Access411,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=VPN_Access_Access411,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_DocHolliday_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=Server_Local_Admin_Doc,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=Server_Local_Admin_Doc,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=Server_Local_Admin_Doc,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_Access_Control_Group" - set member "HVDC02.scsd.ad" "DC01.scsd.ad" "HVDC03.scsd.ad" + set member "DC01.scsd.ad" "HVDC03.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=Server_Local_Admin_Security,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=Server_Local_Admin_Security,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=Server_Local_Admin_Security,OU=SCSDUsers,DC=scsd,DC=ad" next end next edit "VPN_Auditor_Group" - set member "HVDC02.scsd.ad" "HVDC03.scsd.ad" "DC01.scsd.ad" + set member "HVDC03.scsd.ad" "DC01.scsd.ad" config match edit 1 set server-name "DC01.scsd.ad" set group-name "CN=VPN_Auditors,OU=SCSDUsers,DC=scsd,DC=ad" next edit 2 - set server-name "HVDC02.scsd.ad" - set group-name "CN=VPN_Auditors,OU=SCSDUsers,DC=scsd,DC=ad" - next - edit 3 set server-name "HVDC03.scsd.ad" set group-name "CN=VPN_Auditors,OU=SCSDUsers,DC=scsd,DC=ad" next