Fortinet black logo

Cookbook

Configuring the FortiAuthenticator RADIUS client

Copy Link
Copy Doc ID 502fabff-dbf1-11ea-96b9-00505692583a:501675
Download PDF

Configuring the FortiAuthenticator RADIUS client

To create the RADIUS client:
  1. On the FortiAuthenticator, go to Authentication > RADIUS Service > Clients, and select Create New.
  2. Enter a Name, the IP address of the FortiGate, and set a Secret.
    The secret is a pre-shared secure password that the FortiGate will use to authenticate to the FortiAuthenticator.
  3. Click OK.
To create the RADIUS policy:
  1. Go to Authentication > RADIUS Service > Policies, and select Create New.
  2. Enter the RADIUS policy name, description, and select the FortiGate RADIUS client.
  3. Optionally, configure RADIUS attribute criteria.
  4. Choose Password/OTP authentication as the authentication type.
  5. Choose a username format (in this example: username@realm), select the Local realm, and add the SMSgroup as a filter.

  6. Set the authentication method to Mandatory two-factor authentication.
  7. Click Save and Exit.

Configuring the FortiAuthenticator RADIUS client

To create the RADIUS client:
  1. On the FortiAuthenticator, go to Authentication > RADIUS Service > Clients, and select Create New.
  2. Enter a Name, the IP address of the FortiGate, and set a Secret.
    The secret is a pre-shared secure password that the FortiGate will use to authenticate to the FortiAuthenticator.
  3. Click OK.
To create the RADIUS policy:
  1. Go to Authentication > RADIUS Service > Policies, and select Create New.
  2. Enter the RADIUS policy name, description, and select the FortiGate RADIUS client.
  3. Optionally, configure RADIUS attribute criteria.
  4. Choose Password/OTP authentication as the authentication type.
  5. Choose a username format (in this example: username@realm), select the Local realm, and add the SMSgroup as a filter.

  6. Set the authentication method to Mandatory two-factor authentication.
  7. Click Save and Exit.