The FortiAnalyzer system supports authentication of administrators locally, remotely with RADIUS, LDAP, or TACACS+ servers, and using PKI. Remote authentication servers can also be added to authentication groups that administrators can use for authentication.
To use PKI authentication, you must configure the authentication before you create the administrator accounts. See Public Key Infrastructure for more information.
To use remote authentication servers, you must configure the appropriate server entries in the FortiAnalyzer unit for each authentication server in your network. New LDAP remote authentication servers can be added and linked to all ADOMs or specific ADOMs. See LDAP servers, RADIUS servers, TACACS+ servers, and Remote authentication server groups for more information.