Fortinet black logo

RADIUS Interoperability Guide

Home FortiAuthenticator 6.2.0 RADIUS Interoperability Guide
6.2.0
6.4.0
6.3.0
6.2.0
6.1.0

Creating an admin user

Creating an admin user

To create a RADIUS administrator with 2FA:
  1. In FortiWeb, go to System > Admin > Administrators, and click Create New.
  2. Enter a username and password for the administrator.
  3. Select Remote User as the Type.
  4. Choose the previously created Admin User Group.
  5. Select the Access Profile for the administrator, and click OK.

Once completed, log into the FortiWeb GUI with the newly created RADIUS administrator credentials.

FortiWeb allows users to authenticate without using a secondary form by entering both their password and token code in the password field. The RADIUS server extracts the token code automatically. The combined entry uses the following format:

<password><token_code>

For example, if the password is fortinet and the code is 123456, the user enters fortinet123456 in the Password field.

Successful authentication will provide the user with access to the FortiWeb, and will generate a login event on the FortiAuthenticator.

Creating a wildcard administrator account

Wildcard accounts can also be used in order to avoid specifying each user locally. When this option is enabled, any user included on the RADIUS server associated with the selected Admin User Group will be able to authenticate as an administrator on the FortiWeb.

To create a wildcard administrator account:
  1. Create a new administrator profile with a descriptive name.
    The name is for internal purposes only and is not used during authentication.
  2. Choose Remote User as the Type, and enable Wildcard.
  3. Choose the RADIUS Admin User Group previously created.
  4. Select an Access Profile, and click OK.

Previous
Next

Creating an admin user

To create a RADIUS administrator with 2FA:
  1. In FortiWeb, go to System > Admin > Administrators, and click Create New.
  2. Enter a username and password for the administrator.
  3. Select Remote User as the Type.
  4. Choose the previously created Admin User Group.
  5. Select the Access Profile for the administrator, and click OK.

Once completed, log into the FortiWeb GUI with the newly created RADIUS administrator credentials.

FortiWeb allows users to authenticate without using a secondary form by entering both their password and token code in the password field. The RADIUS server extracts the token code automatically. The combined entry uses the following format:

<password><token_code>

For example, if the password is fortinet and the code is 123456, the user enters fortinet123456 in the Password field.

Successful authentication will provide the user with access to the FortiWeb, and will generate a login event on the FortiAuthenticator.

Creating a wildcard administrator account

Wildcard accounts can also be used in order to avoid specifying each user locally. When this option is enabled, any user included on the RADIUS server associated with the selected Admin User Group will be able to authenticate as an administrator on the FortiWeb.

To create a wildcard administrator account:
  1. Create a new administrator profile with a descriptive name.
    The name is for internal purposes only and is not used during authentication.
  2. Choose Remote User as the Type, and enable Wildcard.
  3. Choose the RADIUS Admin User Group previously created.
  4. Select an Access Profile, and click OK.

Previous
Next