Fortinet black logo

Administration Guide

Home FortiProxy 7.2.0 Administration Guide
7.2.0
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.0
7.0.17
7.0.0
2.0.0
1.2.0
1.1.0
1.0.0

Add or edit a FortiToken

Add or edit a FortiToken

Before one or more FortiTokens can be used to authenticate logons, they must be added to the FortiProxy unit. The import feature is used to enter many FortiToken serial numbers at one time. The serial number file must be a text file with one FortiToken serial number per line.

caution icon

Both FortiToken Mobile and physical FortiTokens store their encryption seeds on the cloud; therefore, you will only be able to register them to a single FortiProxy unit or FortiAuthenticator unit.

Because FortiToken-200CD seed files are stored on the CD, these tokens can be registered on multiple FortiProxy units and/or FortiAuthenticator units, but not simultaneously.
To manually add a FortiToken to the FortiProxy using the web-based manager:

  1. Go to User & Authentication > FortiTokens.

  2. Select Create New.

  3. In Type, select Hard Token or Mobile Token.

  4. Enter one or more FortiToken serial numbers (hard token) or activation codes (mobile token).

  5. Click OK.

note icon

For mobile token, you receive the activation code in the license certificate after you purchase a license.

To import multiple FortiTokens to the FortiProxy unit using the web-based manager:

  1. Go to User & Authentication > FortiTokens.

  2. Select Create New.

  3. In Type, select Hard Token.

  4. Select Import.

  5. Select Serial Number File or Seed File, depending on which file you have.

  6. Select Upload and browse to the local file location on your local computer.

  7. Select Open. The file is imported.

  8. Click OK.

To import FortiTokens to the FortiProxy unit from external Sources using the CLI:

FortiToken seed files (both physical and mobile versions) can be imported from either FTP or TFTP servers, or a USB drive, allowing seed files to be imported from an external source more easily:

execute fortitoken import ftp <file name> <ip>[:ftp port] <Enter> <user> <password>

execute fortitoken import tftp <file name> <ip>

execute fortitoken import usb <file name>

note icon

To import seed files for FortiToken Mobile, replace fortitoken with fortitoken-mobile.
To add two FortiTokens to the FortiProxy unit using the CLI:

config user fortitoken

edit <serial_number>

next

edit <serial_number2>

next

end

To edit the settings for a FortiToken:

  1. Go to User & Authentication > FortiTokens.

  2. Select a FortiToken from the list.

  3. Select Edit.

  4. Change the comments and serial number as needed.

  5. Click OK.

Previous
Next

Add or edit a FortiToken

Before one or more FortiTokens can be used to authenticate logons, they must be added to the FortiProxy unit. The import feature is used to enter many FortiToken serial numbers at one time. The serial number file must be a text file with one FortiToken serial number per line.

caution icon

Both FortiToken Mobile and physical FortiTokens store their encryption seeds on the cloud; therefore, you will only be able to register them to a single FortiProxy unit or FortiAuthenticator unit.

Because FortiToken-200CD seed files are stored on the CD, these tokens can be registered on multiple FortiProxy units and/or FortiAuthenticator units, but not simultaneously.
To manually add a FortiToken to the FortiProxy using the web-based manager:

  1. Go to User & Authentication > FortiTokens.

  2. Select Create New.

  3. In Type, select Hard Token or Mobile Token.

  4. Enter one or more FortiToken serial numbers (hard token) or activation codes (mobile token).

  5. Click OK.

note icon

For mobile token, you receive the activation code in the license certificate after you purchase a license.

To import multiple FortiTokens to the FortiProxy unit using the web-based manager:

  1. Go to User & Authentication > FortiTokens.

  2. Select Create New.

  3. In Type, select Hard Token.

  4. Select Import.

  5. Select Serial Number File or Seed File, depending on which file you have.

  6. Select Upload and browse to the local file location on your local computer.

  7. Select Open. The file is imported.

  8. Click OK.

To import FortiTokens to the FortiProxy unit from external Sources using the CLI:

FortiToken seed files (both physical and mobile versions) can be imported from either FTP or TFTP servers, or a USB drive, allowing seed files to be imported from an external source more easily:

execute fortitoken import ftp <file name> <ip>[:ftp port] <Enter> <user> <password>

execute fortitoken import tftp <file name> <ip>

execute fortitoken import usb <file name>

note icon

To import seed files for FortiToken Mobile, replace fortitoken with fortitoken-mobile.
To add two FortiTokens to the FortiProxy unit using the CLI:

config user fortitoken

edit <serial_number>

next

edit <serial_number2>

next

end

To edit the settings for a FortiToken:

  1. Go to User & Authentication > FortiTokens.

  2. Select a FortiToken from the list.

  3. Select Edit.

  4. Change the comments and serial number as needed.

  5. Click OK.

Previous
Next