Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Administration Guide

    Home FortiAuthenticator Cloud Administration Guide

    Introduction

    Introduction

    FortiAuthenticator Cloud is an Identity and Access Management as a Service (IDaaS) cloud service offered by Fortinet.

    FortiAuthenticator Cloud is a service hosted by Fortinet with FortiAuthenticator-VM, with token features offered by FortiIdentity Cloud.

    For limitations of FortiAuthenticator Cloud vs standalone/BYOD FortiAuthenticator please refer to Limitations of FortiAuthenticator Cloud.

    FortiAuthenticator Cloud delivers the following features:

    • Authentication: FortiAuthenticator Cloud includes passwordless Fast IDentity Online (FIDO), OAuth2 Authorization, OpenID Connect (OIDC), and Security Assertion Markup Language (SAML) authentication methods.

    • User Identification: FortiAuthenticator Cloud can identify users through multiple data sources, including Active Directory (AD), desktop client, guest portal logon, RADIUS accounting, Kerberos, and a Representational State Transfer (REST) API.

      It can then communicate this information to FortiGate or FortiMail units for use in identity based policies.

    • Certificate Management: FortiAuthenticator Cloud can create and sign digital certificates for use.

    • Integration: FortiAuthenticator Cloud can integrate with 3rd RADIUS, LDAP, and SAML authentication systems, allowing you to reuse existing information sources.

      The REST API can also be used to integrate with external provisioning systems.

    FortiAuthenticator Cloud delivers the following features using FortiIdentity Cloud:

    • Adaptive Authentication: FortiAuthenticator Cloud provides adaptive authentication where more information regarding a login attempt, including time of the day, geo-location, and so- on, is used to evaluate the risk of a login attempt.

      FortiAuthenticator Cloud allows end-users to bypass OTP verification of MFA under certain “safer” conditions and denies such attempts under certain otherwise “riskier” conditions.

    • Multi-Factor Authentication: FortiAuthenticator Cloud can act as a multi-factor authentication client using FortiIdentity Cloud.

      More information

      End-customers use FortiAuthenticator Cloud the same way as the standalone FortiAuthenticator. As a result, end-customers can use the FortiAuthenticator Admin Guide and FortiAuthenticator REST API Solution Guide for information about using either the standalone FortiAuthenticator or FortiAuthenticator Cloud.

      For more information, see the FortiAuthenticator Admin Guide and FortiAuthenticator REST API Solution Guide on the Fortinet Docs Library.

    Previous
    Next

    Introduction

    Introduction

    FortiAuthenticator Cloud is an Identity and Access Management as a Service (IDaaS) cloud service offered by Fortinet.

    FortiAuthenticator Cloud is a service hosted by Fortinet with FortiAuthenticator-VM, with token features offered by FortiIdentity Cloud.

    For limitations of FortiAuthenticator Cloud vs standalone/BYOD FortiAuthenticator please refer to Limitations of FortiAuthenticator Cloud.

    FortiAuthenticator Cloud delivers the following features:

    • Authentication: FortiAuthenticator Cloud includes passwordless Fast IDentity Online (FIDO), OAuth2 Authorization, OpenID Connect (OIDC), and Security Assertion Markup Language (SAML) authentication methods.

    • User Identification: FortiAuthenticator Cloud can identify users through multiple data sources, including Active Directory (AD), desktop client, guest portal logon, RADIUS accounting, Kerberos, and a Representational State Transfer (REST) API.

      It can then communicate this information to FortiGate or FortiMail units for use in identity based policies.

    • Certificate Management: FortiAuthenticator Cloud can create and sign digital certificates for use.

    • Integration: FortiAuthenticator Cloud can integrate with 3rd RADIUS, LDAP, and SAML authentication systems, allowing you to reuse existing information sources.

      The REST API can also be used to integrate with external provisioning systems.

    FortiAuthenticator Cloud delivers the following features using FortiIdentity Cloud:

    • Adaptive Authentication: FortiAuthenticator Cloud provides adaptive authentication where more information regarding a login attempt, including time of the day, geo-location, and so- on, is used to evaluate the risk of a login attempt.

      FortiAuthenticator Cloud allows end-users to bypass OTP verification of MFA under certain “safer” conditions and denies such attempts under certain otherwise “riskier” conditions.

    • Multi-Factor Authentication: FortiAuthenticator Cloud can act as a multi-factor authentication client using FortiIdentity Cloud.

      More information

      End-customers use FortiAuthenticator Cloud the same way as the standalone FortiAuthenticator. As a result, end-customers can use the FortiAuthenticator Admin Guide and FortiAuthenticator REST API Solution Guide for information about using either the standalone FortiAuthenticator or FortiAuthenticator Cloud.

      For more information, see the FortiAuthenticator Admin Guide and FortiAuthenticator REST API Solution Guide on the Fortinet Docs Library.

    Previous
    Next