I'm trying to restrict an AD account to only have vpn access rights but no domain user rights. Can it be done or should I try something out of windows server's boundaries?
We are using a Fortigate firewall where we defined this user to only have access to the 8080 port after connecting with vpn authenticated by the AD. If I leave the settings in the current form, would that user be able to access the domain user shares?
