Fortinet Document Library

Version:


Table of Contents

Cookbook

6.1.0
Download PDF
Copy Link

Configuring the FortiAuthenticator RADIUS client

To create the RADIUS client:
  1. On the FortiAuthenticator, go to Authentication > RADIUS Service > Clients, and select Create New.
  2. Enter a Name, the IP address of the FortiGate, and set a Secret.
    The secret is a pre-shared secure password that the FortiGate will use to authenticate to the FortiAuthenticator.
  3. Click OK.
To create the RADIUS policy:
  1. Go to Authentication > RADIUS Service > Policies, and select Create New.
  2. Enter the RADIUS policy name, description, and select the FortiGate RADIUS client.
  3. Optionally, configure RADIUS attribute criteria.
  4. Choose Password/OTP authentication as the authentication type.
  5. Choose a username format (in this example: username@realm), select the Local realm, and add the SMSgroup as a filter.

  6. Set the authentication method to Mandatory two-factor authentication.
  7. Click Save and Exit.

Configuring the FortiAuthenticator RADIUS client

To create the RADIUS client:
  1. On the FortiAuthenticator, go to Authentication > RADIUS Service > Clients, and select Create New.
  2. Enter a Name, the IP address of the FortiGate, and set a Secret.
    The secret is a pre-shared secure password that the FortiGate will use to authenticate to the FortiAuthenticator.
  3. Click OK.
To create the RADIUS policy:
  1. Go to Authentication > RADIUS Service > Policies, and select Create New.
  2. Enter the RADIUS policy name, description, and select the FortiGate RADIUS client.
  3. Optionally, configure RADIUS attribute criteria.
  4. Choose Password/OTP authentication as the authentication type.
  5. Choose a username format (in this example: username@realm), select the Local realm, and add the SMSgroup as a filter.

  6. Set the authentication method to Mandatory two-factor authentication.
  7. Click Save and Exit.