Fortinet black logo

Administration Guide

Assigning authorization rules

Assigning authorization rules

Authorization rules can be specified within user groups or on individual user accounts. If the user is member of multiple groups, the FortiAuthenticator arbitrarily chooses one of the TACACS+ authorization rules from one of the groups. When a TACACS+ authorization rule is specified on a user's account, it will override rules from any group for which the user is a member.

To configure TACACS+ authorization rules in user groups:
  1. Go to Authentication > User Management > User Groups.
  2. Create a new user group or edit an existing one.
  3. Under the TACACS+ Authorization menu, select a rule from the TACACS+ authorization rule dropdown.

To configure TACACS+ authorization rules on individual users:
  1. Go to Authentication > User Management > Local Users.
  2. Create a new user or edit an existing one.
  3. Under the TACACS+ Authorization menu, select a rule from the TACACS+ authorization rule dropdown.

Assigning authorization rules

Authorization rules can be specified within user groups or on individual user accounts. If the user is member of multiple groups, the FortiAuthenticator arbitrarily chooses one of the TACACS+ authorization rules from one of the groups. When a TACACS+ authorization rule is specified on a user's account, it will override rules from any group for which the user is a member.

To configure TACACS+ authorization rules in user groups:
  1. Go to Authentication > User Management > User Groups.
  2. Create a new user group or edit an existing one.
  3. Under the TACACS+ Authorization menu, select a rule from the TACACS+ authorization rule dropdown.

To configure TACACS+ authorization rules on individual users:
  1. Go to Authentication > User Management > Local Users.
  2. Create a new user or edit an existing one.
  3. Under the TACACS+ Authorization menu, select a rule from the TACACS+ authorization rule dropdown.