Fortinet black logo

Cookbook

Computer authentication using FortiAuthenticator with MS AD Root CA

Copy Link
Copy Doc ID 23809264-eafe-11eb-97f7-00505692583a:3965
Download PDF

Computer authentication using FortiAuthenticator with MS AD Root CA

This example includes the configuration required for computer authentication using FortiAuthenticator with a Microsoft Active Directory Root CA.

This configuration uses the following topology:

  • Microsoft Active Directory configured with a Root CA.
  • A wireless client with a computer certificate issued by the MS AD Root CA.
  • A FortiGate and a managed FortiAP SSID with a WPA2-enterprise and RADIUS assigned VLAN.
  • A FortiAuthenticator.

To configure computer authentication using FortiAuthenticator with a Microsoft AD Root CA:
  1. Configure the certificates and Root CA
  2. Configure LDAP users on FortiAuthenticator
  3. Configure RADIUS authentication
  4. Configure the SSID and interface objects
  5. Results

Computer authentication using FortiAuthenticator with MS AD Root CA

This example includes the configuration required for computer authentication using FortiAuthenticator with a Microsoft Active Directory Root CA.

This configuration uses the following topology:

  • Microsoft Active Directory configured with a Root CA.
  • A wireless client with a computer certificate issued by the MS AD Root CA.
  • A FortiGate and a managed FortiAP SSID with a WPA2-enterprise and RADIUS assigned VLAN.
  • A FortiAuthenticator.

To configure computer authentication using FortiAuthenticator with a Microsoft AD Root CA:
  1. Configure the certificates and Root CA
  2. Configure LDAP users on FortiAuthenticator
  3. Configure RADIUS authentication
  4. Configure the SSID and interface objects
  5. Results