FortiAuthenticator configuration
To enhance the Microsoft Windows operating system login with the use of a OTP (i.e. the two-factor authentication token), FortiAuthenticator Agent for Microsoft OWA uses the FortiAuthenticator REST API. To use the REST API, a key is required which must be generated before installing the desktop agent software.
Generating an API key requires a working email configuration. Before proceeding, configure and test an email server in System > Messaging > SMTP Servers and set it as active in System > Messaging > Email Services.
To generate an API key:
- Log into FortiAuthenticator.
- Go to Authentication > User Management > Local Users and click the admin user.
- Under User Role, select Web service access.
- Click OK.
An email containing the API Key for that user will be sent.The required users should be imported via LDAP and assigned a FortiToken with which to authenticate before proceeding.